CVE-2006-2158

Dynamic variable evaluation vulnerability in index.php in Stadtaus Guestbook Script 1.7 and earlier, when register_globals is enabled, allows remote attackers to modify arbitrary program variables via parameters, which are evaluated as PHP variable variables, as demonstrated by performing PHP remote file inclusion using the include_files array parameter.

CVSS v2.0 6.4 MEDIUM

6.4^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:N

Exploitability : 10.0 / Impact : 4.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://retrogod.altervista.org/gbs_17_xpl_pl.html
http://www.stadtaus.com/forum/t-2600.html
http://www.securityfocus.com/bid/17845
http://secunia.com/advisories/19957
http://www.vupen.com/english/advisories/2006/1660
https://exchange.xforce.ibmcloud.com/vulnerabilities/26252

Advertisement

Configurations

Configuration 1 (hide)

cpe:2.3:a:stadtaus:guestbook_script:*:*:*:*:*:*:*:*

Information

Published : 2006-05-03 03:02

Updated : 2017-07-19 18:31

NVD link : CVE-2006-2158

Mitre link : CVE-2006-2158

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

stadtaus

guestbook_script

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://retrogod.altervista.org/gbs_17_xpl_pl.html", "name": "http://retrogod.altervista.org/gbs_17_xpl_pl.html", "tags": [], "refsource": "MISC"}, {"url": "http://www.stadtaus.com/forum/t-2600.html", "name": "http://www.stadtaus.com/forum/t-2600.html", "tags": [], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/bid/17845", "name": "17845", "tags": [], "refsource": "BID"}, {"url": "http://secunia.com/advisories/19957", "name": "19957", "tags": [], "refsource": "SECUNIA"}, {"url": "http://www.vupen.com/english/advisories/2006/1660", "name": "ADV-2006-1660", "tags": [], "refsource": "VUPEN"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/26252", "name": "guestbook-includefiles-file-include(26252)", "tags": [], "refsource": "XF"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Dynamic variable evaluation vulnerability in index.php in Stadtaus Guestbook Script 1.7 and earlier, when register_globals is enabled, allows remote attackers to modify arbitrary program variables via parameters, which are evaluated as PHP variable variables, as demonstrated by performing PHP remote file inclusion using the include_files array parameter."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-2158", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.4, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 4.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2006-05-03T10:02Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:stadtaus:guestbook_script:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.7"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2017-07-20T01:31Z"}