Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1254

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-1254
Last Modified 05 Sep 2008 04:36:27
Published 31 Dec 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1254

Summary

Active PHP Bookmarks (APB) 1.1.01 allows remote attackers to execute arbitrary PHP code via (1) head.php, (2) apb_common.php, or (3) apb_view_class.php by modifying the APB_SETTINGS parameter to reference a URL on a remote web server that contains the code.

Vulnerable Systems


References

BUGTRAQ - 20030106 Bookmar4U and Active PHP Bookmarks Vulnerabilities

BID - 6545

XF - apb-apbsettings-file-include(11010)


Last Updated: 27 May 2016 10:38:17