| VID |
21904 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The phpbb-Auction software is vulnerable to a remote file include vulnerability in the acceptDecline.php script. phpbb-Auction is an auction module for phpBB. phpbb-Auction version 1.3m and earlier versions are vulnerable to a remote file include vulnerability, caused by improper validation of user-supplied input passed to the 'phpbb_root_path' parameter of the 'auction/auction_common.php' script. If the register_globals is enabled, a remote attacker could send a specially-crafted URL request to execute arbitrary PHP code and operating system commands on the affected host.
* References:
http://pridels.blogspot.com/2006/05/phpbb-auction-mod-remote-file.html
http://www.frsirt.com/english/advisories/2006/1641
http://secunia.com/advisories/19944
http://www.osvdb.org/25263
* Platforms Affected:
phpbb-auction.com, phpbb-Auction (module for phpBB) version 1.3m and earlier versions
Any operating system Any version |
| Recommendation |
No upgrade or patch available as of June 2014. Edit the source code to ensure that input is properly verified.
As a workaround, disable PHP's 'register_globals' setting. |
| Related URL |
CVE-2006-2245 (CVE) |
| Related URL |
17822 (SecurityFocus) |
| Related URL |
26192 (ISS) |
|
