 |
Name:
phpBG.Rootdir.Parameter.File.Inclusion
|
Released Date:
Oct 26 2007
|
Severity:
medium
|
CVE:
2007-4636
|
|
|
Bugtraq:
25486
|
|
|
|
|
FortiGuard Center
> Vulnerability Encyclopedia
In-Depth Analysis
|
Description
|
This indicates an attempt to exploit one of several remote file inclusion vulnerabilities in phpBG.
The vulnerabilities can be exploited via a specially crafted URL request to 'intern/admin/other/backup.php', 'intern/admin/', 'intern/clan/member_add.php', 'intern/config/key_2.php' or 'intern/config/forum.php'. The request must have the 'set_depth' parameter set to specify a malicious PHP file from a remote system. As a result a remote attacker can execute arbitrary script code on the web server with the privileges of the server.
|
|
|
|
Impact
|
|
System Compromise: remote attackers can gain control of vulnerable systems.
|
|
|
|
Affected Products
|
|
phpBG version 0.9.1
|
|
Aliases
|
phpBG.Rootdir.Parameter.File.Inclusion
|
|
References
|
http://www.securityfocus.com/bid/25486
http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2007-4636
|
|
Recommended Actions
|
|
Currently we are not aware of any vendor supplied patch for this issue.
|
|
