Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0782

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0782
Last Modified 05 Sep 2008 05:00:12
Published 19 Feb 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0782

Summary

Unspecified vulnerability in weblog.pl in PerlBlog 1.09b and earlier allows remote attackers to create arbitrary files and possibly execute arbitrary code via unspecified attack vectors related to improper handling of (1) the reply parameter, possibly involving injection of (2) the name parameter and (3) the body parameter.

Vulnerable Systems

Application

  • Perlblog 1.08

  • Perlblog 1.09

  • Perlblog 1.09b


References

XF - perlblog-weblog-command-execution(24692)

MISC - http://evuln.com/vulns/81/summary.html

BID - 16707

BUGTRAQ - 20060227 [eVuln] PerlBlog Multiple Vulnerabilities

SREASON - 508

SECUNIA - 18924


Last Updated: 27 May 2016 10:41:48