|
|
CVE Reference: CVE-2005-2148 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2005-2148 |
|
|
Description: Cacti 0.8.6e and earlier does not perform proper input validation to protect against common attacks, which allows remote attackers to execute arbitrary commands or SQL by sending a legitimate value in a POST request or cookie, then specifying the attack string in the URL, which causes the get_request_var function to return the wrong value in the $_REQUEST variable, which is cleansed while the original malicious $_GET value remains unmodified, as demonstrated in (1) graph_image.php and (2) graph.php. |
|
|
CVE Status: Candidate |
|
|
References: XF http://xforce.iss.net/xforce/xfdb/21266 http://xforce.iss.net/xforce/xfdb/21270 ST 1014361 SAID Secunia Advisory: SA15490 MLIST http://sourceforge.net/mailarchive/forum.php?forum_id=10360&max_rows=25&style=flat&viewmonth=200507&viewday=1 MISC http://www.hardened-php.net/advisory-042005.php http://www.hardened-php.net/advisory-032005.php DEBIAN http://www.debian.org/security/2005/dsa-764 CONFIRM http://www.cacti.net/downloads/patches/0.8.6e/cacti-0.8.6f_security.patch BUGTRAQ http://www.securityfocus.com/archive/1/404047/30/30/threaded http://www.securityfocus.com/archive/1/404054 BID 14128 14129 |
|
| Return to the previous page. |
