Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2044

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-2044
Last Modified 05 Sep 2008 04:43:03
Published 01 Jun 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-2044

Summary

PHP-Nuke 7.3, and other products that use the PHP-Nuke codebase such as the Nuke Cops betaNC PHP-Nuke Bundle, OSCNukeLite 3.1, and OSC2Nuke 7x do not properly use the eregi() PHP function with $_SERVER['PHP_SELF'] to identify the calling script, which allows remote attackers to directly access scripts, obtain path information via a PHP error message, and possibly gain access, as demonstrated using an HTTP request that contains the "admin.php" string.

Vulnerable Systems

Operating System

  • Trustix Secure Linux 2.0

  • Trustix Secure Linux 2.1

Application

  • Francisco Burzi Php-nuke 5.0

  • Francisco Burzi Php-nuke 5.0.1

  • Francisco Burzi Php-nuke 5.1

  • Francisco Burzi Php-nuke 5.2

  • Francisco Burzi Php-nuke 5.2a

  • Francisco Burzi Php-nuke 5.3.1

  • Francisco Burzi Php-nuke 5.4

  • Francisco Burzi Php-nuke 5.5

  • Francisco Burzi Php-nuke 5.6

  • Francisco Burzi Php-nuke 6.0

  • Francisco Burzi Php-nuke 6.5

  • Francisco Burzi Php-nuke 6.5 Beta1

  • Francisco Burzi Php-nuke 6.5 Final

  • Francisco Burzi Php-nuke 6.5 Rc1

  • Francisco Burzi Php-nuke 6.5 Rc2

  • Francisco Burzi Php-nuke 6.5 Rc3

  • Francisco Burzi Php-nuke 6.6

  • Francisco Burzi Php-nuke 6.7

  • Francisco Burzi Php-nuke 6.9

  • Francisco Burzi Php-nuke 7.0

  • Francisco Burzi Php-nuke 7.0 Final

  • Francisco Burzi Php-nuke 7.1

  • Francisco Burzi Php-nuke 7.2

  • Francisco Burzi Php-nuke 7.3

  • Oscommerce Osc2nuke 7x 1.0

  • Paul Laudanski Betanc Php-nuke Bundle


References

XF - nukecops-ergei-path-disclosure(16298)

XF - oscnukelite-eregi-path-disclosure(16297)

XF - osc2nuke-eregi-path-disclosure(16296)

XF - phpnuke-eregi-path-disclosure(16294)

BID - 10447

OSVDB - 6593

SECUNIA - 11766

BUGTRAQ - 20040606 Re: [Squid 2004-Nuke-001] Inadequate Security Checking in PHPNuke

BUGTRAQ - 20040601 [Squid 2004-Nuke-001] Inadequate Security Checking in PHPNuke

BUGTRAQ - 20040601 [Squid 2004-betaNC-001] Inadequate Security Checking in NukeCops

BUGTRAQ - 20040601 [Squid 2004-OSC2Nuke-001] Inadequate Security Checking in OSC2Nuke

BUGTRAQ - 20040601 [Squid 2004-betaNC-001] Inadequate Security Checking in NukeCops betaNC Bundle


Last Updated: 27 May 2016 10:39:18