Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4317

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2005-4317
Last Modified 07 Mar 2011 09:27:59
Published 17 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-4317

Summary

Limbo CMS 1.0.4.2 and earlier, with register_globals off, does not protect the $_SERVER variable from external modification, which allows remote attackers to use the _SERVER[REMOTE_ADDR] parameter to (1) conduct cross-site scripting (XSS) attacks in the stats module or (2) execute arbitrary code via an eval injection attack in the wrapper option in index2.php.

Vulnerable Systems

Application

  • Limbo Cms 1.0.4.2


References

SECUNIA - 18063

VUPEN - ADV-2005-2932

BID - 15871

BUGTRAQ - 20051214 LIMBO CMS <= v1.0.4.2 _SERVER[] array overwrite / remote code execution

SECTRACK - 1015364

MISC - http://rgod.altervista.org/limbo1042_xpl.html

OSVDB - 21756

OSVDB - 21754

SREASON - 255


Last Updated: 27 May 2016 10:41:15