Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1800

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-1800
Last Modified 05 Sep 2008 05:02:52
Published 18 Apr 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1800

Summary

Directory traversal vulnerability in posts.php in SimpleBBS 1.0.6 through 1.1 allows remote attackers to include and execute arbitrary files via ".." sequences in the language cookie, as demonstrated by by injecting the code into the gl_session cookie of users.php, which is stored in error.log.

Vulnerable Systems

Application

  • Simplemedia Simplebbs 1.0.6

  • Simplemedia Simplebbs 1.0.7

  • Simplemedia Simplebbs 1.1


References

MISC - http://www.worlddefacers.de/Public/WD-SMPL.txt

BID - 17501

BUGTRAQ - 20060412 SimpleBBS v1.1(posts.php) remote command execution

MISC - http://downloads.securityfocus.com/vulnerabilities/exploits/SimpleBBS-RCE-posts.php.pl

XF - simplebbs-posts-command-execution(25788)


Last Updated: 27 May 2016 10:42:11