CVE-2006-4378

** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in the Rssxt component for Joomla! (com_rssxt), possibly 2.0 Beta 1 or 1.0 and earlier, allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) pinger.php, (2) RPC.php, or (3) rssxt.php. NOTE: another researcher has disputed this issue, saying that the attacker can not control this parameter. In addition, as of 20060825, the original researcher has appeared to be unreliable with some other past reports. CVE has not performed any followup analysis with respect to this issue.

CVSS v2.0 7.5 HIGH

7.5^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P

Exploitability : 10.0 / Impact : 6.4

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://www.osvdb.org/28096
http://www.securityfocus.com/bid/19593
http://securityreason.com/securityalert/1456
http://www.securityfocus.com/archive/1/444058/100/100/threaded
http://www.securityfocus.com/archive/1/443628/100/100/threaded

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:joomla:rssxt_component:1.0:::::::*
	cpe:2.3:a:joomla:rssxt_component::::::::

Information

Published : 2006-08-26 14:04

Updated : 2018-10-17 14:36

NVD link : CVE-2006-4378

Mitre link : CVE-2006-4378

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

joomla

rssxt_component

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://www.osvdb.org/28096", "name": "28096", "tags": [], "refsource": "OSVDB"}, {"url": "http://www.securityfocus.com/bid/19593", "name": "19593", "tags": [], "refsource": "BID"}, {"url": "http://securityreason.com/securityalert/1456", "name": "1456", "tags": [], "refsource": "SREASON"}, {"url": "http://www.securityfocus.com/archive/1/444058/100/100/threaded", "name": "20060818 Re: Joomla Rssxt <= 1.0 Remote File Include Vulnerability", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/443628/100/100/threaded", "name": "20060818 Joomla Rssxt <= 1.0 Remote File Include Vulnerability", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "** DISPUTED ** Multiple PHP remote file inclusion vulnerabilities in the Rssxt component for Joomla! (com_rssxt), possibly 2.0 Beta 1 or 1.0 and earlier, allow remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter in (1) pinger.php, (2) RPC.php, or (3) rssxt.php. NOTE: another researcher has disputed this issue, saying that the attacker can not control this parameter. In addition, as of 20060825, the original researcher has appeared to be unreliable with some other past reports. CVE has not performed any followup analysis with respect to this issue."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2006-4378", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "HIGH", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}}, "publishedDate": "2006-08-26T21:04Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:joomla:rssxt_component:1.0:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:joomla:rssxt_component:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "2.0_beta_1"}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-17T21:36Z"}