| VID |
21849 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The PHP iCalendar is vulnerable to a remote file include vulnerability via the phpicalendar cookie. PHP iCalendar is a web-based calendar viewer / parser written in PHP. PHP iCalendar versions 2.0a2, 2.0b, 2.0c, and 2.0.1 could allow a remote attacker to include malicious PHP files, caused by improper validation of user-supplied input passed to the "phpicalendar" cookie of the "index.php" script. A remote attacker can send a specially-crafted URL request to execute arbitrary PHP code and operating system commands on the affected host.
* References:
http://lists.grok.org.uk/pipermail/full-disclosure/2005-October/038142.html
http://secunia.com/advisories/17328/
http://www.ush.it/2005/10/25/php-icalendar-css/
http://www.frsirt.com/english/advisories/2005/2204
* Platforms Affected:
PHP iCalendar versions 2.0a2, 2.0b, 2.0c, and 2.0.1
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of PHP iCalendar (2.21 or later), available from the SourceForge.net Download Web site at http://sourceforge.net/project/showfiles.php?group_id=62270 |
| Related URL |
CVE-2005-3366 (CVE) |
| Related URL |
15193 (SecurityFocus) |
| Related URL |
22864 (ISS) |
|
