| VID |
21713 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
A version of vBulletin software which is older or as old as than 3.0.9 is detected as installed on the host. vBulletin is a PHP-based Web forum, developed by Jelsoft Enterprises, that uses a MySQL database. vBulletin version 3.0.9 and earlier versions are vulnerable to multiple vulnerabilities, which can be exploited by a remote attacker to conduct file uploading, cross-site scripting (XSS), and SQL injection attacks. Especially, a remote attacker with access to the administrator panel could send a specially-crafted POST request to the image.php script to upload malicious files and execute arbitrary PHP code on the system.
* Note: This check solely relied on the version number of vBulletin on the remote Web server to assess this vulnerability, so this might be a false positive.
* References:
http://morph3us.org/advisories/20050917-vbulletin-3.0.7.txt
http://morph3us.org/advisories/20050917-vbulletin-3.0.8.txt
http://archives.neohapsis.com/archives/bugtraq/2005-09/0256.html
http://secunia.com/advisories/16873/
* Platforms Affected:
Jelsoft Enterprises Limited, vBulletin version 3.0.9 and earlier versions
Any Operating system Any version |
| Recommendation |
Upgrade to vBulletin 3.0.9 to resolve many but not all of these issues. vBulletin version 3.0.9 is available from the vBulletin Download Web page at http://www.vbulletin.com/forum/showthread.php?postid=959173 |
| Related URL |
CVE-2005-3019,CVE-2005-3020,CVE-2005-3021,CVE-2005-3022,CVE-2005-3023,CVE-2005-3024,CVE-2005-3025 (CVE) |
| Related URL |
14872,14874 (SecurityFocus) |
| Related URL |
22355,22357,22359 (ISS) |
|
