| VID |
21905 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The UBB.threads software is vulnerable to a remote file include vulnerability via the 'thispath' parameter. UBB.Threads is a bulletin board system written in PHP. UBB.threads versions 6.4 through 6.5.2 are vulnerable to a remote file include vulnerability, caused by improper validation of user-supplied input passed to the 'thispath' parameter of the 'addpost_newpoll.php' script. If the register_globals is enabled, a remote attacker could send a specially-crafted URL request to execute arbitrary PHP code and operating system commands on the affected host.
* References:
http://www.ubbcentral.com/boards/showflat.php/Cat/0/Number/4560078/an/0/page/0
http://www.milw0rm.com/exploits/1814
http://www.frsirt.com/english/advisories/2006/1915
* Platforms Affected:
Groupee, Inc., UBB.threads versions 6.4 through 6.5.2
Any operating system Any version |
| Recommendation |
Upgrade to the latest version of UBB.threads (6.5.3 or later), available from the ubbcentral Web site at http://www.ubbcentral.com/ubbthreads/ |
| Related URL |
CVE-2006-2568 (CVE) |
| Related URL |
18075 (SecurityFocus) |
| Related URL |
26596 (ISS) |
|
