Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4319

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-4319
Last Modified 07 Mar 2011 09:27:59
Published 17 Dec 2005 06:03:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4319

Summary

Directory traversal vulnerability in index2.php in Limbo CMS 1.0.4.2 and earlier allows remote attackers to include arbitrary PHP files via ".." sequences in the option parameter.

Vulnerable Systems

Application

  • Limbo Cms 1.0.4.2


References

BID - 15871

SECUNIA - 18063

VUPEN - ADV-2005-2932

BUGTRAQ - 20051214 LIMBO CMS <= v1.0.4.2 _SERVER[] array overwrite / remote code execution

SECTRACK - 1015364

MISC - http://rgod.altervista.org/limbo1042_xpl.html

OSVDB - 21755

SREASON - 255


Last Updated: 27 May 2016 10:41:16