Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1315

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1315
Last Modified 15 Nov 2008 12:37:24
Published 12 Nov 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1315

Summary

viewtopic.php in phpBB 2.x before 2.0.11 improperly URL decodes the highlight parameter when extracting words and phrases to highlight, which allows remote attackers to execute arbitrary PHP code by double-encoding the highlight value so that special characters are inserted into the result, which is then processed by PHP exec, as exploited by the Santy.A worm.

Vulnerable Systems

Application

  • Phpbb Group Phpbb

  • Phpbb Group Phpbb 1.0.0

  • Phpbb Group Phpbb 1.0.1

  • Phpbb Group Phpbb 1.2.0

  • Phpbb Group Phpbb 1.2.1

  • Phpbb Group Phpbb 1.4.0

  • Phpbb Group Phpbb 1.4.1

  • Phpbb Group Phpbb 1.4.2

  • Phpbb Group Phpbb 1.4.4

  • Phpbb Group Phpbb 2.0 Beta1

  • Phpbb Group Phpbb 2.0 Rc1

  • Phpbb Group Phpbb 2.0 Rc2

  • Phpbb Group Phpbb 2.0 Rc3

  • Phpbb Group Phpbb 2.0 Rc4

  • Phpbb Group Phpbb 2.0.0

  • Phpbb Group Phpbb 2.0.1

  • Phpbb Group Phpbb 2.0.10

  • Phpbb Group Phpbb 2.0.2

  • Phpbb Group Phpbb 2.0.3

  • Phpbb Group Phpbb 2.0.4

  • Phpbb Group Phpbb 2.0.5

  • Phpbb Group Phpbb 2.0.6

  • Phpbb Group Phpbb 2.0.6c

  • Phpbb Group Phpbb 2.0.6d

  • Phpbb Group Phpbb 2.0.7

  • Phpbb Group Phpbb 2.0.7a

  • Phpbb Group Phpbb 2.0.8

  • Phpbb Group Phpbb 2.0.8a

  • Phpbb Group Phpbb 2.0.9


References

CERT - TA04-356A

CERT-VN - VU#497400

XF - phpbb-view-sql-injection(18052)

SECUNIA - 13239

GENTOO - GLSA-200411-32

BID - 10701

BUGTRAQ - 20041222 Re: phpBB Worm

CONFIRM - http://www.phpbb.com/phpBB/viewtopic.php?t=240513

BUGTRAQ - 20041118 EXEC exploit in phpBB - fix

BUGTRAQ - 20041220 phpBB Worm

BUGTRAQ - 20041112 phpBB Code EXEC (v2.0.10)


Last Updated: 27 May 2016 10:38:59