phpBB2 Arbitrary File Unlink and Disclosure Vulnerabilities

phpBB2 Arbitrary File Unlink and Disclosure Vulnerabilities

K-OTik Security Advisory : KOTIK/ADV-2005-0194
CVE Reference : CAN-2005-0258 - CAN-2005-0259
Rated as : Moderate
Remotely Exploitable : Yes
Locally Exploitable : Yes
Release Date : 2005-02-23

* Technical Description *

Two vulnerabilities were identified in phpBB, and may be exploited by remote attackers to read or deleted arbitrary system files. The first flaw is due to an input validation error when handling specially crafted requests to upload avatars, which may be exploited by attackers to read arbitrary system files. The second vulnerability is due to a directory traversal error when handling the "avatarselect" return value, which may be exploited by attackers to unlink arbitrary system files.

* Affected Products *

phpBB version 2.0.11 and prior

* Solution *

phpBB version 2.0.12 :

Para ver los enlaces debes ser usuario Crear Usuario o Hacer Sesion

* References *

Para ver los enlaces debes ser usuario Crear Usuario o Hacer Sesion

Para ver los enlaces debes ser usuario Crear Usuario o Hacer Sesion

Para ver los enlaces debes ser usuario Crear Usuario o Hacer Sesion

* Credits *

Vulnerability reported by AnthraX101

* ChangeLog *

2005-02-23 : Original Advisory

	Bienvenido(a), Visitante. Favor de ingresar o registrarse. ¿Perdiste tu email de activación? - Julio 26, 2008, 12:33:05 Boton Buscar