Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1251

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-1251
Last Modified 05 Sep 2008 04:36:26
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1251

Summary

The (1) menu.inc.php, (2) datasets.php and (3) mass_operations.inc.php (mistakenly referred to as mass_opeations.inc.php) scripts in N/X 2002 allow remote attackers to execute arbitrary PHP code via a c_path that references a URL on a remote web server that contains the code.

Vulnerable Systems

Application

  • Nx N X Web Content Management System 2002 Prerelease1


References

BUGTRAQ - 20030102 N/X (PHP)

BID - 6500

XF - nx-file-include(10969)

SECUNIA - 7808


Last Updated: 27 May 2016 10:38:17