Joomla! Phoca Favicon Component Insecure Directory Permissions Vulnerability
BID:53040
Info
Joomla! Phoca Favicon Component Insecure Directory Permissions Vulnerability
| Bugtraq ID: | 53040 |
| Class: | Design Error |
| CVE: | |
| Remote: | No |
| Local: | Yes |
| Published: | Apr 17 2012 12:00AM |
| Updated: | Apr 17 2012 12:00AM |
| Credit: | Joomla! VEL team |
| Vulnerable: |
Joomla Phoca Favicon 2.0.2 |
| Not Vulnerable: | |
Discussion
Joomla! Phoca Favicon Component Insecure Directory Permissions Vulnerability
The Phoca Favicon component for Joomla! is prone to a security vulnerability because it sets insecure directory permissions.
A local attacker can exploit this issue to modify, create, or delete files contained in the affected directory.
Phoca Favicon 2.0.2 is vulnerable; other versions may also be affected.
The Phoca Favicon component for Joomla! is prone to a security vulnerability because it sets insecure directory permissions.
A local attacker can exploit this issue to modify, create, or delete files contained in the affected directory.
Phoca Favicon 2.0.2 is vulnerable; other versions may also be affected.
Exploit / POC
Joomla! Phoca Favicon Component Insecure Directory Permissions Vulnerability
Attackers can exploit this issue using readily available tools.
Attackers can exploit this issue using readily available tools.
Solution / Fix
Joomla! Phoca Favicon Component Insecure Directory Permissions Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
References
Joomla! Phoca Favicon Component Insecure Directory Permissions Vulnerability
References:
References:
- Joomla! Homepage (Joomla!)
- Joomla! Phoca Favicon Component Homepage (Joomla)