Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3530

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2006-3530
Last Modified 07 Mar 2011 09:38:51
Published 12 Jul 2006 05:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-3530

Summary

PHP remote file inclusion vulnerability in com_pccookbook/pccookbook.php in the PccookBook Component for Mambo and Joomla 0.3 and possibly up to 1.3.1, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via the mosConfig_absolute_path parameter.

Vulnerable Systems

Application

  • Joomla Pc Cookbook 0.3

  • Joomla Pc Cookbook 1.3.1


References

XF - pccookbook-pccookbook-file-include(27641)

VUPEN - ADV-2006-2739

BID - 18919

BUGTRAQ - 20060710 [ECHO_ADV_37$2006] pc_cookbook Mambo/Joomla Component <= v0.3 Remote File Include Vulnerabilities

SECUNIA - 21015

MILW0RM - 2024

MISC - http://advisories.echo.or.id/adv/adv37-matdhule-2006.txt

SREASON - 1215


Last Updated: 27 May 2016 10:43:02