Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4573

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2005-4573
Last Modified 22 Oct 2012 12:00:00
Published 29 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4573

Summary

PHP remote file include vulnerability in plog-admin-functions.php in Plogger Beta 2 allows remote attackers to execute arbitrary code via a URL in the config[basedir] parameter.

Vulnerable Systems

Application

  • Plogger -


References

BID - 15992

CONFIRM - http://www.plogger.org/two-point-one/

SECTRACK - 1015380

CONFIRM - http://masendav.com/~duke/PloggerChanges_files/FileComparisonReport1.html

MISC - http://freeconnects.webcindario.com/index.php?option=com_content&task=view&id=41&Itemid=1

XF - plogger-plogadminfunctions-file-include(23861)

OSVDB - 22395

SREASON - 273


Last Updated: 27 May 2016 10:40:44