Summary
The remote web server contains a PHP script that is affected by a local file include issue.
Description:
The version of PunBB installed on the remote host fails to sanitize input to the 'language' parameter before storing it in the 'register.php' script as a user's preferred language setting. By registering with a specially-crafted value, an attacker can leverage this issue to view arbitrary files and possibly execute arbitrary code on the affected host.
Solution
Update to version 1.2.14 or later.
References
Severity
Classification
-
CVE CVE-2006-5735 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- ALCASAR Remote Code Execution Vulnerability
- Apache Tomcat Windows Installer Privilege Escalation Vulnerability
- Apache Tomcat/JBoss EJBInvokerServlet / JMXInvokerServlet (RMI over HTTP) Marshalled Object Remote Code Execution
- ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability
- ActualAnalyzer Lite 'ant' Cookie Parameter Remote Command Execution Vulnerability