Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3172

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3172
Last Modified 07 Mar 2011 12:00:00
Published 22 Jun 2006 08:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3172

Summary

Multiple PHP remote file inclusion vulnerabilities in Content*Builder 0.7.5 allow remote attackers to execute arbitrary PHP code via a URL with a trailing slash (/) character in the (1) lang_path parameter to (a) cms/plugins/col_man/column.inc.php, (b) cms/plugins/poll/poll.inc.php, (c) cms/plugins/user_managment/usrPortrait.inc.php, (d) cms/plugins/user_managment/user.inc.php, (e) cms/plugins/media_manager/media.inc.php, (f) cms/plugins/events/permanent.eventMonth.inc.php, (g) cms/plugins/events/events.inc.php, and (h) cms/plugins/newsletter2/newsletter.inc.php; (2) path[cb] paramter to (i) modules/guestbook/guestbook.inc.php, (j) modules/shoutbox/shoutBox.php, and (k) modules/sitemap/sitemap.inc.php; and the (3) rel parameter to (l) modules/download/overview.inc.php, (m) modules/download/detailView.inc.php, (n) modules/article/fullarticle.inc.php, (o) modules/article/comments.inc.php, (p) modules/article2/overview.inc.php, (q) modules/article2/fullarticle.inc.php, (r) modules/article2/comments.inc.php, (s) modules/headline/headlineBox.php, and (t) modules/headline/showHeadline.inc.php.

Vulnerable Systems

Application

  • Content%2abuilder 0.7.5


References

XF - contentbuilder-multiple-file-include(27044)

VUPEN - ADV-2006-2300

BID - 18404

OSVDB - 26363

OSVDB - 26362

OSVDB - 26361

OSVDB - 26360

OSVDB - 26359

OSVDB - 26358

OSVDB - 26357

OSVDB - 26356

OSVDB - 26355

OSVDB - 26354

OSVDB - 26353

OSVDB - 26352

OSVDB - 26351

OSVDB - 26350

OSVDB - 26349

OSVDB - 26348

OSVDB - 26347

OSVDB - 26346

OSVDB - 26345

OSVDB - 26344

SECUNIA - 20557

BUGTRAQ - 20060611 Content-Builder (CMS) 0.7.5, Remote command execution


Last Updated: 27 May 2016 10:42:54