CVE-2006-0869

Sažetak

Directory traversal vulnerability in the "remember me" feature in liveuser.php in PHP Extension and Application Repository (PEAR) LiveUser 0.16.8 and earlier allows remote attackers to determine file existence, and possibly delete arbitrary files with short pathnames or possibly read arbitrary files, via a .. (dot dot) in the store_id value of a cookie.

Reference

http://pear.php.net/package/LiveUser/download/
http://securityreason.com/securityalert/466
http://securitytracker.com/id?1015659
http://www.gulftech.org/?node=research&article_id=00103-02212006
http://www.securityfocus.com/archive/1/425711/100/0/threaded
http://www.securityfocus.com/bid/16761
http://www.vupen.com/english/advisories/2006/0697
https://exchange.xforce.ibmcloud.com/vulnerabilities/24852
https://exchange.xforce.ibmcloud.com/vulnerabilities/24853

CVSS

Base:	6.4
Impact:	4.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

18-10-2018 - 16:29

Objavljeno

23-02-2006 - 23:02