CVE-2010-0988

Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow (1) remote attackers to write to arbitrary files and execute arbitrary PHP code via vectors related to improper handling of login failures by includes/login.php; and allow remote authenticated users to write to arbitrary files and execute arbitrary PHP code via vectors involving the (2) filename and (3) block parameters to view.php.

CVSS v2.0 6.0 MEDIUM

6.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:S/C:P/I:P/A:P

Exploitability : 6.8 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication SINGLE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://secunia.com/secunia_research/2010-51/	Vendor Advisory
http://www.osvdb.org/63166
http://secunia.com/advisories/39011	Vendor Advisory
http://www.securityfocus.com/bid/38956
http://www.osvdb.org/63168
http://secunia.com/secunia_research/2010-45/	Vendor Advisory
http://www.securityfocus.com/archive/1/510300/100/0/threaded
http://www.securityfocus.com/archive/1/510299/100/0/threaded

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:pulsecms:pulse_cms:1.17:::::::*
	cpe:2.3:a:pulsecms:pulse_cms:1.16:::::::*
	cpe:2.3:a:pulsecms:pulse_cms:1.2:::::::*
	cpe:2.3:a:pulsecms:pulse_cms:1.18:::::::*
	cpe:2.3:a:pulsecms:pulse_cms::::::::
	cpe:2.3:a:pulsecms:pulse_cms:1.2.1:::::::*
	cpe:2.3:a:pulsecms:pulse_cms:1.0:-::::::
	cpe:2.3:a:pulsecms:pulse_cms:1.15:::::::*
	cpe:2.3:a:pulsecms:pulse_cms:1.1:::::::*
	cpe:2.3:a:pulsecms:pulse_cms:1.01:::::::*

Information

Published : 2010-03-26 11:30

Updated : 2018-10-10 12:55

NVD link : CVE-2010-0988

Mitre link : CVE-2010-0988

JSON object : View

CWE

CWE-94

Improper Control of Generation of Code ('Code Injection')

Advertisement

Products Affected

pulsecms

pulse_cms

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://secunia.com/secunia_research/2010-51/", "name": "http://secunia.com/secunia_research/2010-51/", "tags": ["Vendor Advisory"], "refsource": "MISC"}, {"url": "http://www.osvdb.org/63166", "name": "63166", "tags": [], "refsource": "OSVDB"}, {"url": "http://secunia.com/advisories/39011", "name": "39011", "tags": ["Vendor Advisory"], "refsource": "SECUNIA"}, {"url": "http://www.securityfocus.com/bid/38956", "name": "38956", "tags": [], "refsource": "BID"}, {"url": "http://www.osvdb.org/63168", "name": "63168", "tags": [], "refsource": "OSVDB"}, {"url": "http://secunia.com/secunia_research/2010-45/", "name": "http://secunia.com/secunia_research/2010-45/", "tags": ["Vendor Advisory"], "refsource": "MISC"}, {"url": "http://www.securityfocus.com/archive/1/510300/100/0/threaded", "name": "20100324 Secunia Research: Pulse CMS login.php Arbitrary File Writing Vulnerability", "tags": [], "refsource": "BUGTRAQ"}, {"url": "http://www.securityfocus.com/archive/1/510299/100/0/threaded", "name": "20100324 Secunia Research: Pulse CMS Arbitrary File Writing Vulnerability", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "Multiple unspecified vulnerabilities in Pulse CMS before 1.2.3 allow (1) remote attackers to write to arbitrary files and execute arbitrary PHP code via vectors related to improper handling of login failures by includes/login.php; and allow remote authenticated users to write to arbitrary files and execute arbitrary PHP code via vectors involving the (2) filename and (3) block parameters to view.php."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "CWE-94"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2010-0988", "ASSIGNER": "PSIRT-CNA@flexerasoftware.com"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 6.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:S/C:P/I:P/A:P", "authentication": "SINGLE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 6.4, "obtainAllPrivilege": false, "exploitabilityScore": 6.8, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2010-03-26T18:30Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.17:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.16:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.18:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:*:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true, "versionEndIncluding": "1.2.2"}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.0:-:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.15:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:pulsecms:pulse_cms:1.01:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2018-10-10T19:55Z"}