Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2878

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-2878
Last Modified 07 Mar 2011 09:37:10
Published 06 Jun 2006 08:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-2878

Summary

The spellchecker (spellcheck.php) in DokuWiki 2006/06/04 and earlier allows remote attackers to insert and execute arbitrary PHP code via "complex curly syntax" that is inserted into a regular expression that is processed by preg_replace with the /e (executable) modifier.

Vulnerable Systems

Application

  • Andreas Gohr Dokuwiki Release 2004-07-04

  • Andreas Gohr Dokuwiki Release 2004-07-07

  • Andreas Gohr Dokuwiki Release 2004-07-12

  • Andreas Gohr Dokuwiki Release 2004-07-21

  • Andreas Gohr Dokuwiki Release 2004-07-25

  • Andreas Gohr Dokuwiki Release 2004-08-08

  • Andreas Gohr Dokuwiki Release 2004-08-15a

  • Andreas Gohr Dokuwiki Release 2004-08-22

  • Andreas Gohr Dokuwiki Release 2004-09-12

  • Andreas Gohr Dokuwiki Release 2004-09-25

  • Andreas Gohr Dokuwiki Release 2004-09-30

  • Andreas Gohr Dokuwiki Release 2004-10-19

  • Andreas Gohr Dokuwiki Release 2004-11-01

  • Andreas Gohr Dokuwiki Release 2004-11-02

  • Andreas Gohr Dokuwiki Release 2004-11-10

  • Andreas Gohr Dokuwiki Release 2005-01-14

  • Andreas Gohr Dokuwiki Release 2005-01-15

  • Andreas Gohr Dokuwiki Release 2005-01-16a

  • Andreas Gohr Dokuwiki Release 2005-02-06

  • Andreas Gohr Dokuwiki Release 2005-02-18

  • Andreas Gohr Dokuwiki Release 2005-05-07

  • Andreas Gohr Dokuwiki Release 2005-07-01

  • Andreas Gohr Dokuwiki Release 2005-07-13

  • Andreas Gohr Dokuwiki Release 2005-09-19

  • Andreas Gohr Dokuwiki Release 2005-09-22

  • Andreas Gohr Dokuwiki Release 2006-03-05

  • Andreas Gohr Dokuwiki Release 2006-06-04


References

MISC - http://www.hardened-php.net/advisory_042006.119.html

SECUNIA - 20429

CONFIRM - http://bugs.splitbrain.org/index.php?do=details&id=823

XF - dokuwiki-spellchecker-code-execution(26913)

VUPEN - ADV-2006-2142

BID - 18289

BUGTRAQ - 20060605 Advisory 04/2006: DokuWiki PHP code execution vulnerability in spellchecker

OSVDB - 25980

GENTOO - GLSA-200606-16

SECTRACK - 1016221

SECUNIA - 20669


Last Updated: 27 May 2016 10:42:48