Fiche créée le 2004-04-09 05:56:47, dernière mise à jour le 2010-10-08 21:30:11
Achievo contains a flaw that may allow a remote attacker to execute arbitrary commands. The issue is due to class.atkdateattribute.js.php not properly sanitizing user input supplied to the 'config_atkroot' variable. This may allow an attacker to include a file from a remote host that contains arbitrary commands which will be executed by the vulnerable script.
This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).
|
| |
| Achievo 0.9.1 Affected |
| Achievo 0.9.0 Affected |
| Achievo 0.8.1 Affected |
| Achievo 0.8.0 Affected |
| Achievo 0.7.3 Affected |
| Achievo 0.7.2 Affected |
| Achievo 0.7.1 Affected |
| Achievo 0.7.0 Affected |
| Achievo 0.8.2 Possible Affected |
| |
Attack Type : Input Manipulation
XSS, SQL injection, file retrieval, directory traversal, overflows, URL encoding. |
Découvert le 2002-08-22 07:00:00
|
| Disclosure : OSVDB Verified |
Confirmé le 2002-08-22 07:00:00
|
| Disclosure : Vendor Verified |
| |
Exploit : Exploit Unknown
Unsure of exploit status. |
Exploit découvert le 2002-08-22 07:00:00
|
Impact : Loss of Integrity
Assurance that data is unaltered by unauthorized persons.
Examples: XSS, arbitrary command execution, most overflows, most format strings, SQL injection, unauthorized file modification/deletion/creation, remote file inclusion, etc. |
| |
Location : Remote / Network Access
If network access if required and exploit can be done remotely. |
| |
OSVDB : Web Related
The vulnerability is a web issue and will have an associated security check. |
| |
| Solution : Upgrade |
Upgrade to version 1.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.
Solution découverte le 2002-08-22 07:00:00
|
| |
| External refs : |
| OSVDB 14538 |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
| |
