CGI abuses : Invision Power Board Error Message Path Disclosure

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.52066

Kategorie: CGI abuses

Titel: Invision Power Board Error Message Path Disclosure

Zusammenfassung: NOSUMMARY

Beschreibung: Description:

The remote version of Invision Power Board, according to its
version number, is vulnerable to a path disclosure vulnerability
that allows an attacker to determine file system path names
for the Invision Power Board installation. The disclosure
is a result of submitting an invalid image file upload request.

Version 1.3 is known to be vulnerable.

Solution : Upgrade to a newer version.
http://www.invisionboard.com/

Risk factor : Medium

CVSS Score:
5.0

Querverweis: BugTraq ID: 9810
Common Vulnerability Exposure (CVE) ID: CVE-2004-0355
http://www.securityfocus.com/bid/9810
Bugtraq: 20040305 Invision Power Board 1.3 Final Path Disclosure Vulnerability (Google Search)
http://marc.info/?l=bugtraq&m=107850510428567&w=2
XForce ISS Database: invision-invalid-path-disclosure(15400)
https://exchange.xforce.ibmcloud.com/vulnerabilities/15400

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.52066
Kategorie:	CGI abuses
Titel:	Invision Power Board Error Message Path Disclosure
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote version of Invision Power Board, according to its version number, is vulnerable to a path disclosure vulnerability that allows an attacker to determine file system path names for the Invision Power Board installation. The disclosure is a result of submitting an invalid image file upload request. Version 1.3 is known to be vulnerable. Solution : Upgrade to a newer version. http://www.invisionboard.com/ Risk factor : Medium CVSS Score: 5.0
Querverweis:	BugTraq ID: 9810 Common Vulnerability Exposure (CVE) ID: CVE-2004-0355 http://www.securityfocus.com/bid/9810 Bugtraq: 20040305 Invision Power Board 1.3 Final Path Disclosure Vulnerability (Google Search) http://marc.info/?l=bugtraq&m=107850510428567&w=2 XForce ISS Database: invision-invalid-path-disclosure(15400) https://exchange.xforce.ibmcloud.com/vulnerabilities/15400
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com