Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-3548

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2005-3548
Last Modified 05 Sep 2008 04:54:41
Published 16 Nov 2005 02:42:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2005-3548

Summary

Directory traversal vulnerability in Task Manager in Invision Power Board (IP.Board) 2.0.1 allows limited remote attackers to include files via a .. (dot dot) in the "Task PHP File To Run" field.

Vulnerable Systems

Application

  • Invision Power Services Invision Board 2.0.1


References

SECUNIA - 17443

BUGTRAQ - 20051104 Invision Power Board Privilege Esaclation (2.0.1 + more)

OSVDB - 35429

XF - ipb-taskmanager-directory-traversal(40000)


Last Updated: 27 May 2016 10:40:58