CVE-2006-4758 - CVE Reference - Advisories

CVE Reference: CVE-2006-4758

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2006-4758

Description: phpBB 2.0.21 does not properly handle pathnames ending in %00, which allows remote authenticated administrative users to upload arbitrary files, as demonstrated by a query to admin/admin_board.php with an avatar_path parameter ending in .php%00.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/28884 SAID Secunia Advisory: SA22188 Secunia Advisory: SA28871 MISC http://www.security.nnov.ru/Odocument221.html http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=489624 DEBIAN http://www.debian.org/security/2008/dsa-1488 CONFIRM http://bugs.debian.org/cgi-bin/bugreport.cgi?bug=388120 BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/445788/100/0/threaded BID 20347 21806

Return to the previous page.

Secunia PSI
Scan | Patch | Track
Free Download

Secunia Poll

Most Popular Advisories

1.	Red Hat update for vsftpd

2.	Red Hat update for rdesktop

3.	Red Hat update for rdesktop

4.	Red Hat update for coreutils

5.	Red Hat update for nss_ldap

6.	Red Hat update for kernel

7.	Red Hat update for mysql

8.	Atom PhotoBlog "photoId" SQL Injection Vulnerability

9.	OpenBSD BIND Query Port DNS Cache Poisoning

10.	Red Hat update for kernel