Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2216

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-2216
Last Modified 05 Sep 2008 05:03:57
Published 05 May 2006 08:46:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2216

Summary

Open Bulletin Board (OpenBB) 1.0.8 allows remote attackers to obtain the full path of the web server via an invalid pforums parameter to (1) misc.php and (2) member.php.

Vulnerable Systems

Application

  • Devsyn Open Bulletin Board 1.0.8


References

BUGTRAQ - 20060428 OpenBB 1.0.8 Full Path Disclosure

XF - openbb-multiple-path-disclosure(26193)

SREASON - 845


Last Updated: 27 May 2016 10:42:22