CVE-2006-0147 - Secunia Advisories - Vulnerability Intelligence

CVE Reference: CVE-2006-0147
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-0147

Description: Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/24052 SAID Secunia Advisory: SA17418 Secunia Advisory: SA18254 Secunia Advisory: SA18267 Secunia Advisory: SA18260 Secunia Advisory: SA18276 Secunia Advisory: SA18233 Secunia Advisory: SA19555 Secunia Advisory: SA19590 Secunia Advisory: SA19591 Secunia Advisory: SA19600 Secunia Advisory: SA19628 Secunia Advisory: SA19691 OSVDB 22291 MISC http://retrogod.altervista.org/simplog_092_incl_xpl.html http://www.milw0rm.com/exploits/1663 http://retrogod.altervista.org/phpopenchat_30x_sql_xpl.html http://secunia.com/secunia_research/2005-64/advisory/ GENTOO http://www.gentoo.org/security/en/glsa/glsa-200604-07.xml DEBIAN http://www.debian.org/security/2006/dsa-1031 http://www.debian.org/security/2006/dsa-1030 http://www.debian.org/security/2006/dsa-1029 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/430743/100/0/threaded http://www.securityfocus.com/archive/1/archive/1/430448/100/0/threaded

Return to the previous page.