|
 |
|
YABB SE Arbitrary File Inclusion Vulnerability
|
|
|
|
|
Secunia Advisory:
|
SA8646
|
|
|
Release Date:
|
2003-04-24
|
|
|
Critical:
|

Highly critical
|
|
Impact:
|
Exposure of sensitive information System access
|
|
Where:
|
From remote
|
|
Solution Status:
|
Vendor Patch
|
|
| Software: | YaBB SE 1.x
|
|
|
Want to know the next time vulnerabilities are fixed in this product? - Companies can be alerted via email and SMS! |
|
|
Description: A vulnerability has been reported in YABB SE, which can be exploited by malicious, registered users to compromise a vulnerable system.
The vulnerability is caused due to an input validation error making it possible to supply arbitrary paths to files in the variable "$language". This can be exploited by supplying a path to a malicious file on a remote server, which can result in execution of arbitrary code on the vulnerable system.
The vulnerability can also be exploited to access arbitrary files on the vulnerable system with the privileges of the web service if "safe_mode" has been disabled.
Solution: Update to version 1.5.2:
https://sourceforge.net/project/showfiles.php?group_id=57105
Provided and/or discovered by: Fermín J. Serna
Original Advisory: http://www.ngsec.com/docs/advisories/NGSEC-2003-5.txt
|
|
|
|
|
Please note: The information that this Secunia Advisory is based on comes from a third party unless stated otherwise.
Secunia collects, validates, and verifies all vulnerability reports issued by security research groups, vendors, and others.
|
|
|
|
7 Related Secunia Security Advisories
|
|
|
1. YaBB SE "user" SQL Injection Vulnerability
|
|
2. YaBB / YaBB SE Formatting Tag Cross-Site Scripting Vulnerability
|
|
3. YaBB SE "quote" Parameter SQL Injection Vulnerability
|
|
4. YaBB SE SQL Injection Vulnerability
|
|
5. YaBB Execution of Arbitrary Code
|
|
6. YaBB SE remote code execution
|
|
7. YaBB SE "Reminder.php" SQL injection Vulnerability
|
|
|
Send Feedback to Secunia
|
|
If you have new information regarding this Secunia advisory or a product in our database, please send it to us using either our web form or email us at vuln@secunia.com.
Ideas, suggestions, and other feedback are most welcome.
|
|
|
|

|
 |
Secunia PSI Scan | Patch | Track Free Download
|
|
|
Secunia Poll
|
|
|
|
|
 |
|
|
Most Popular Advisories
|
|
|
|
|
|