Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-2717

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-2717
Last Modified 07 Mar 2011 09:24:56
Published 29 Aug 2005 04:14:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-2717

Summary

PHP remote file inclusion vulnerability in WebCalendar before 1.0.1 allows remote attackers to execute arbitrary PHP code when opening settings.php, possibly via send_reminders.php or other scripts.

Vulnerable Systems

Application

  • Webcalendar 1.0.0


References

BID - 14651

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=350336

VUPEN - ADV-2005-1513

XF - webcalendar-includedir-file-include(22136)

DEBIAN - DSA-799

SECTRACK - 1014849

SECUNIA - 16675

SECUNIA - 16528


Last Updated: 27 May 2016 10:40:37