CVE-2006-0713

Sažetak

Directory traversal vulnerability in LinPHA 1.0 allows remote attackers to include arbitrary files via .. (dot dot) sequences in the (1) lang parameter in docs/index.php and the language parameter in (2) install/install.php, (3) install/sec_stage_install.php, (4) install/third_stage_install.php, and (5) install/forth_stage_install.php. NOTE: direct static code injection is resultant from this issue, as demonstrated by inserting PHP code into the username, which is inserted into linpha.log, which is accessible from the directory traversal.

Reference

http://retrogod.altervista.org/linpha_10_local.html
http://secunia.com/advisories/18808
http://securityreason.com/securityalert/426
http://www.securityfocus.com/archive/1/424729/100/0/threaded
http://www.securityfocus.com/bid/16592
http://www.vupen.com/english/advisories/2006/0535
https://exchange.xforce.ibmcloud.com/vulnerabilities/24663

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

19-10-2018 - 15:45

Objavljeno

15-02-2006 - 11:06