Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1209

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-1209
Last Modified 05 Sep 2008 05:01:18
Published 13 Mar 2006 08:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1209

Summary

PHP Advanced Transfer Manager 1.00 through 1.30 stores sensitive information, including password hashes, under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for a users/[USERNAME] file.

Vulnerable Systems

Application

  • Bugada Andrea Php Advanced Transfer Manager 1.00

  • Bugada Andrea Php Advanced Transfer Manager 1.01

  • Bugada Andrea Php Advanced Transfer Manager 1.02

  • Bugada Andrea Php Advanced Transfer Manager 1.03

  • Bugada Andrea Php Advanced Transfer Manager 1.20

  • Bugada Andrea Php Advanced Transfer Manager 1.21

  • Bugada Andrea Php Advanced Transfer Manager 1.22

  • Bugada Andrea Php Advanced Transfer Manager 1.30


References

BUGTRAQ - 20060309 PHP Advanced Transfer Manager Download users password hashes

MISC - http://www.blogcu.com/Liz0ziM/316652/

MISC - http://biyosecurity.be/bugs/patm.txt

XF - phpatm-password-hash-disclosure(25127)

BUGTRAQ - 20060613 Re: PHP Advanced Transfer Manager Download users password hashes

SREASON - 565

SECUNIA - 17134


Last Updated: 27 May 2016 10:41:58