Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2060

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-2060
Last Modified 07 Mar 2011 09:35:05
Published 26 Apr 2006 04:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2060

Summary

Directory traversal vulnerability in action_admin/paysubscriptions.php in Invision Power Board (IPB) 2.1.x and 2.0.x before 20060425 allows remote authenticated administrators to include and execute arbitrary local PHP files via a .. (dot dot) in the name parameter, preceded by enough backspace (%08) characters to erase the initial static portion of a filename.

Vulnerable Systems

Application

  • Invision Power Services Invision Power Board 2.0.x

  • Invision Power Services Invision Power Board 2.1.x


References

CONFIRM - http://forums.invisionpower.com/index.php?showtopic=213374

VUPEN - ADV-2006-1534

BUGTRAQ - 20060425 Invision Vulnerabilities, including remote code execution

XF - invision-admin-file-include(26072)

BUGTRAQ - 20060710 Re: RE: Invision Vulnerabilities, including remote code execution

BUGTRAQ - 20060427 Re: Invision Vulnerabilities, including remote code execution

OSVDB - 25008

SREASON - 796

SECUNIA - 19830


Last Updated: 27 May 2016 10:42:19