CVE-2006-4191

Sažetak

Directory traversal vulnerability in memcp.php in XMB (Extreme Message Board) 1.9.6 and earlier allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the langfilenew parameter, as demonstrated by injecting PHP sequences into an Apache HTTP Server log file, which is then included by header.php.

Reference

http://retrogod.altervista.org/xmb_196_sql.html
http://www.securityfocus.com/bid/19501
http://secunia.com/advisories/21293
http://www.securityfocus.com/bid/19494
http://securityreason.com/securityalert/1411
https://exchange.xforce.ibmcloud.com/vulnerabilities/28356
https://www.exploit-db.com/exploits/2178
http://www.securityfocus.com/archive/1/443167/100/0/threaded
https://docs.xmbforum2.com/index.php?title=Security_Issue_History

CVSS

Base:	5.1
Impact:	6.4
Exploitability:	4.9

Pristup

Vektor	Složenost	Autentikacija
NETWORK	HIGH	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:H/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

29-04-2021 - 15:15

Objavljeno

17-08-2006 - 01:04