CVE Reference: CVE-2005-0512

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2005-0512

Description:
PHP remote code injection vulnerability in Tar.php in Mambo 4.5.2 allows remote attackers to execute arbitrary PHP code by modifying the mosConfig_absolute_path parameter to reference a URL on a remote web server that contains the code, a different vulnerability than CVE-2004-1693.

CVE Status:
Candidate

References:

SAID
  Secunia Advisory: SA14337

CONFIRM
  http://mamboforge.net/frs/download.php/4043/Patch_4.5.2_to_4.5.2.1.zip


Return to the previous page.