Intrusion Prevention

eFiction.Image.Upload.Arbitrary.Command.Execution

Description

It indicates a possible exploit of a remote file upload vulnerability in eFiction.

Affected Products

efiction efiction 2.0
efiction efiction 1.1
efiction efiction 1.0

Impact

The execution of arbitrary PHP code on the system.

Recommended Actions

A fix is available:
http://www.efiction.wallflowergirl.com/index.php

CVE References

CVE-2005-4171