Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1684

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-1684
Last Modified 03 Nov 2008 01:16:18
Published 10 Apr 2006 08:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1684

Summary

Unspecified vulnerability in ecotwo Shopsystem 1.0-192 and earlier allows remote attackers to include arbitrary local files via (1) the lang parameter in news.php and (2) other unspecified vectors.

Vulnerable Systems

Application

  • Ecotwo Shopsystem 1.0 192


References

MISC - http://pridels0.blogspot.com/2006/04/ecotwo-shopsystem-vuln.html


Last Updated: 27 May 2016 10:42:09