File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
BID:13084
Info
File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
| Bugtraq ID: | 13084 |
| Class: | Input Validation Error |
| CVE: |
CVE-2005-1047 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 09 2005 12:00AM |
| Updated: | Jul 12 2009 12:56PM |
| Credit: | Discovery is credited to Status-x <[email protected]>. |
| Vulnerable: |
File Upload Script File Upload Script 1.1 |
| Not Vulnerable: | |
Discussion
File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
File Upload Script is reported prone to an arbitrary script upload vulnerability.
If successfully exploited, an attacker can execute arbitrary script code on a vulnerable server. This can lead to unauthorized access in the context of the affected server.
All versions of File Upload Script are considered vulnerable at the moment.
File Upload Script is reported prone to an arbitrary script upload vulnerability.
If successfully exploited, an attacker can execute arbitrary script code on a vulnerable server. This can lead to unauthorized access in the context of the affected server.
All versions of File Upload Script are considered vulnerable at the moment.
Exploit / POC
File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
An exploit is not required.
An exploit is not required.
Solution / Fix
File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
Solution:
Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected] <mailto:[email protected]>.
References
File Upload Script PHPBB Module Arbitrary Script Upload Vulnerability
References:
References:
- File Upload Script (Meilad)