| VID |
21890 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The ActualAnalyzer is vulnerable to a remote file include vulnerability in the 'direct.php' script. ActualAnalyzer is a PHP-based tool for monitoring and analyzing Web site traffic. ActualAnalyzer Lite versions 2.72 and earlier, ActualAnalyzer Gold versions 7.63 and earlier, ActualAnalyzer Server versions 8.23 and earlier, and ActualAnalyzer Pro versions 6.88 and earlier are vulnerable to a remote file include vulnerability, caused by improper validation of user-supplied input passed to the 'rf' parameter of the 'direct.php' script. If the register_globals is enabled, a remote attacker could send a specially-crafted URL request to execute arbitrary PHP code and operating system commands on the affected host.
* References:
http://www.securityfocus.com/archive/1/431351/30/0/threaded
http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045894.html
* Platforms Affected:
ActualScripts, ActualAnalyzer Gold versions 7.63 and earlier
ActualScripts, ActualAnalyzer Lite versions 2.72 and earlier
ActualScripts, ActualAnalyzer Pro versions 6.88 and earlier
ActualScripts, ActualAnalyzer Server versions 8.23 and earlier
Any operating system Any version |
| Recommendation |
No upgrade or patch available as of May 2006.
Upgrade to the latest version of ActualAnalyzer, when new version fixed this problem becomes available from the ActualScripts Web site at http://actualscripts.com/products/analyzer/
As a workaround, disable PHP's 'register_globals' setting. |
| Related URL |
CVE-2006-1959 (CVE) |
| Related URL |
17597 (SecurityFocus) |
| Related URL |
25893 (ISS) |
|
