|
|
CVE Reference: CVE-2006-5630 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2006-5630 |
|
|
Description: Hosting Controller 6.1 before Hotfix 3.3 allows remote attackers to (1) delete the virtual directory of an arbitrary site via a modified ForumID parameter in a disableforum action in DisableForum.asp and (2) create an arbitrary forum virtual directory via an empty ForumID parameter in an enableforum action in EnableForum.asp. |
|
|
CVE Status: Candidate |
|
|
References: ST 1017103 SREASON http://securityreason.com/securityalert/1804 SAID Secunia Advisory: SA22607 MISC http://www.kapda.ir/advisory-442.html BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/449937/100/0/threaded |
|
| Return to the previous page. |
