CVE-2006-0899

Directory traversal vulnerability in index.php in 4Images 1.7.1 and earlier allows remote attackers to read and include arbitrary files via ".." (dot dot) sequences in the template parameter.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/advisories/19026	Vendor Advisory
http://retrogod.altervista.org/4images_171_adv.html
http://www.securityfocus.com/bid/16855
http://www.osvdb.org/23529
http://securityreason.com/securityalert/518
http://www.vupen.com/english/advisories/2006/0754
https://exchange.xforce.ibmcloud.com/vulnerabilities/24938
https://www.exploit-db.com/exploits/1533
http://www.securityfocus.com/archive/1/426468/100/0/threaded

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:4images:image_gallery_management_system:*:*:*:*:*:*:*:*

Information

Published : 2006-02-27 11:06

Updated : 2018-10-18 09:29

NVD link : CVE-2006-0899

Mitre link : CVE-2006-0899

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

4images

image_gallery_management_system

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://secunia.com/advisories/19026", "name": "19026", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://retrogod.altervista.org/4images_171_adv.html", "name": "http://retrogod.altervista.org/4images_171_adv.html", "tags": [], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/16855", "name": "16855", "tags": [], "refsource": "BID"}, {"url": "http://www.osvdb.org/23529", "name": "23529", "tags": [], "refsource": "OSVDB"}, {"url": "http://securityreason.com/securityalert/518", "name": "518", "tags": [], "refsource": "SREASON"}, {"url": "http://www.vupen.com/english/advisories/2006/0754", "name": "ADV-2006-0754", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/24938", "name": "4images-template-file-include(24938)", "tags": [], "refsource": "XF"}, {"url": "https://www.exploit-db.com/exploits/1533", "name": "1533", "tags": [], "refsource": "EXPLOIT-DB"}, {"url": "http://www.securityfocus.com/archive/1/426468/100/0/threaded", "name": "20060301 4images <=1.7.1 remote code execution", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Directory traversal vulnerability in index.php in 4Images 1.7.1 and earlier allows remote attackers to read and include arbitrary files via \"..\" (dot dot) sequences in the template parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-0899", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-02-27T19:06Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:4images:image_gallery_management_system:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.7.1"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-18T16:29Z"}