|
Family: CGI abuses --> Category: attack
Limbo CMS classes_dir Parameter Remote File Include Vulnerability Vulnerability Scan
Vulnerability Scan Summary Tries to read /etc/passwd using Limbo CMS
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP script that is affected by a
remote file include issue.
Description :
The remote host is running Limbo CMS, a content-management system
written in PHP.
The version of Limbo CMS installed on the remote host fails to
sanitize user-supplied input to the 'classes_dir' parameter of the
'classes/adodbt/sql.php' script before using it in PHP
'include_once()' functions. Provided PHP's 'register_globals' setting
is enabled, an unauthenticated attacker may be able to exploit this
issue to view arbitrary files on the remote host or to execute
arbitrary PHP code, possibly taken from third-party hosts.
See also :
http://www.limboforge.org/phpbt/bug.php?op=show&bugid=19
Solution :
Apply Cumulative Fix 7a or patch the affected script as described in
the bug report.
Threat Level:
Medium / CVSS Base Score : 4.7
(AV:R/AC:L/Au:NR/C:P/I:P/A:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|