Summary
This host is installed with TYPO3 and is prone to PHP code execution vulnerability.
Impact
Successful exploitation will allow remote attackers to execute arbitrary PHP code.
Impact Level: Application
Solution
Upgrade to TYPO3 4.5.34, 4.7.19, 6.0.14 or 6.1.9 or later, For updates refer to http://typo3.org
Insight
The flaw is triggered as the program fails to validate the authenticity of input in an unserialize() call.
Affected
TYPO3 versions 4.5.0 to 4.5.33, 4.7.0 to 4.7.18, 6.0.0 to 6.0.13 and 6.1.0 to 6.1.8
Detection
Get the installed version with the help of detect NVT and check the version is vulnerable or not.
References
Severity
Classification
-
CVE CVE-2014-3942 -
CVSS Base Score: 6.0
AV:N/AC:M/Au:S/C:P/I:P/A:P
Related Vulnerabilities