Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6513

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2008-6513
Last Modified 02 Apr 2009 01:43:40
Published 24 Mar 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-6513

Summary

Unrestricted file upload vulnerability in saa.php in Andy's PHP Knowledgebase (aphpkb) 0.92.9 allows remote attackers to execute arbitrary code by uploading a file with an executable extension, then accessing it via a link that is listed by authors.php.

Vulnerable Systems

Application

  • Aphpkb 0.92.9


References

CONFIRM - http://sourceforge.net/project/shownotes.php?group_id=113755&release_id=667918

XF - andysphpknowledgebase-saa-file-upload(46977)

BID - 32559

MILW0RM - 7312

SECUNIA - 34476


Last Updated: 27 May 2016 10:49:13