Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1402

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-1402
Last Modified 05 Sep 2008 04:36:50
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1402

Summary

PHP remote file inclusion vulnerability in hit.php for Kietu 2.0 and 2.3 allows remote attackers to execute arbitrary PHP code via the url_hit parameter, a different vulnerability than CVE-2006-5015.

Vulnerable Systems

Application

  • Kietu 2.0

  • Kietu 2.3


References

XF - kietu-hit-file-include(11341)

BID - 6863

SECUNIA - 10754

VULNWATCH - 20030215 Kietu ( PHP )

OSVDB - 3777


Last Updated: 27 May 2016 10:38:20