Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4423

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2005-4423
Last Modified 05 Sep 2008 04:56:50
Published 20 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2005-4423

Summary

Unrestricted file upload vulnerability in PHPFM before 0.2.3 allows remote authenticated users to execute arbitrary code by uploading a file with an executable extension to an accessible directory, as demonstrated using a file with a .php extension, aka "upload phpshell."

Vulnerable Systems


References

BID - 15335

BUGTRAQ - 20051107 upload phpshell in PHPFM


Last Updated: 27 May 2016 10:41:18