Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3543

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3543
Last Modified 05 Sep 2008 05:07:25
Published 12 Jul 2006 08:05:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3543

Summary

** DISPUTED ** Multiple SQL injection vulnerabilities in Invision Power Board (IPB) 1.x and 2.x allow remote attackers to execute arbitrary SQL commands via the (1) idcat and (2) code parameters in a ketqua action in index.php; the id parameter in a (3) Attach and (4) ref action in index.php; the CODE parameter in a (5) Profile, (6) Login, and (7) Help action in index.php; and the (8) member_id parameter in coins_list.php. NOTE: the developer has disputed this issue, stating that the "CODE attribute is never present in an SQL query" and the "'ketqua' [action] and file 'coin_list.php' are not standard IPB 2.x features". It is unknown whether these vectors are associated with an independent module or modification of IPB.

Vulnerable Systems

Application

  • Invision Power Services Invision Power Board 1.0

  • Invision Power Services Invision Power Board 1.0.1

  • Invision Power Services Invision Power Board 1.0.3

  • Invision Power Services Invision Power Board 1.1.1

  • Invision Power Services Invision Power Board 1.1.2

  • Invision Power Services Invision Power Board 1.2

  • Invision Power Services Invision Power Board 1.3

  • Invision Power Services Invision Power Board 1.3 Final

  • Invision Power Services Invision Power Board 1.3.1 Final

  • Invision Power Services Invision Power Board 2.0

  • Invision Power Services Invision Power Board 2.0 Alpha3

  • Invision Power Services Invision Power Board 2.0 Pdr3

  • Invision Power Services Invision Power Board 2.0 Pf1

  • Invision Power Services Invision Power Board 2.0 Pf2

  • Invision Power Services Invision Power Board 2.0.1

  • Invision Power Services Invision Power Board 2.0.2

  • Invision Power Services Invision Power Board 2.0.3

  • Invision Power Services Invision Power Board 2.0.4

  • Invision Power Services Invision Power Board 2.1

  • Invision Power Services Invision Power Board 2.1 Alpha2

  • Invision Power Services Invision Power Board 2.1.4

  • Invision Power Services Invision Power Board 2.1.5

  • Invision Power Services Invision Power Board 2.1.6


References

BID - 18836

BUGTRAQ - 20060710 Re: Invision Power Board "v1.X & 2.X" SQL Injection

BUGTRAQ - 20060704 Invision Power Board "v1.X & 2.X" SQL Injection

OSVDB - 30084

SREASON - 1231


Last Updated: 27 May 2016 10:43:02