[Pushed] MyBB Calendar PHP Error
#1
[Image: zLCx8cF.png]
I wasn't aware there was a year called 0000 Undecided Undecided Undecided
URL: https://community.mybb.com/calendar.php?...8888999999
Software Engineer specializing in C# Program Development
Reply
#2
Screenshots:
[Image: lEWkU0V.png]
[Image: GqNKs5W.png]
[Image: 3vcXm5n.png]

Description: A specially crafted URL "calendar.php?action=dayview&calendar=1&year=-2147483649&month=11&day=4" will either timeout, display a PHP error disclosing the file system path, or if PHP Errors are disabled (such as on mybb.com) will simply display a blank screen.
Software Engineer specializing in C# Program Development
Reply
#3
I've merged your two calendar threads together too, as both are about similar issues in the calendar system related to input checking.
Reply
#4
Hi,

Thank you for your report. We have pushed this issue to our Github repository for further analysis where you can track our commits and progress with fixing this bug. Discussions regarding this bug may also take place there too.

Follow this link to visit the issue on Github: https://github.com/mybb/mybb/issues/2854

Thanks for contributing to MyBB!

Regards,
The MyBB Group
Reply
#5
(2017-10-01, 09:41 PM)Euan T Wrote: I've merged your two calendar threads together too, as both are about similar issues in the calendar system related to input checking.

One causes display issues - other causes excessive CPU usage (remind me and I’ll post stats) and is probably a Denial Of Service Attack Vector. At this point they’re merged but keep in mind I think they are very separate issues.
Software Engineer specializing in C# Program Development
Reply
#6
The root cause and the fix are basically the same, hence the merge. The issue in both cases is caused by a lack of input validation.
Reply
#7
(2017-10-02, 07:46 AM)Euan T Wrote: The root cause and the fix are basically the same, hence the merge. The issue in both cases is caused by a lack of input validation.

Less requests per second for a quick & easy DDoS Wink
Software Engineer specializing in C# Program Development
Reply


Forum Jump:


Users browsing this thread: 1 Guest(s)