Test Kennung:	1.3.6.1.4.1.25623.1.0.16178
Kategorie:	Web application abuses
Titel:	Zeroboard flaws (2)
Zusammenfassung:	The remote host runs Zeroboard, a web BBS application popular in Korea.;; The remote version of this CGI is vulnerable to multiple flaws which may; allow an attacker to execute arbitrary PHP commands on the remote host; by including a PHP file hosted on a third-party server, or to read; arbitrary files with the privileges of the remote web server.
Beschreibung:	Summary: The remote host runs Zeroboard, a web BBS application popular in Korea. The remote version of this CGI is vulnerable to multiple flaws which may allow an attacker to execute arbitrary PHP commands on the remote host by including a PHP file hosted on a third-party server, or to read arbitrary files with the privileges of the remote web server. Solution: Upgrade to Zeroboard 4.1pl6 or later. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	BugTraq ID: 12258 Common Vulnerability Exposure (CVE) ID: CVE-2005-0380 BugTraq ID: 12206 http://www.securityfocus.com/bid/12206 http://www.securityfocus.com/bid/12258 Bugtraq: 20050113 STG Security Advisory: [SSA-20050113-25] ZeroBoard multiple vulnerabilities (Google Search) http://marc.info/?l=bugtraq&m=110565373407474&w=2 http://www.osvdb.org/12928 http://www.osvdb.org/12929 http://www.osvdb.org/12930 http://www.osvdb.org/12931 http://www.osvdb.org/12932 http://securitytracker.com/id?1012884 http://secunia.com/advisories/13769 XForce ISS Database: zeroboard-printcategory-file-include(18892) https://exchange.xforce.ibmcloud.com/vulnerabilities/18892 XForce ISS Database: zeroboard-zero-vote-file-include(18893) https://exchange.xforce.ibmcloud.com/vulnerabilities/18893
Copyright	Copyright (C) 2005 David Maciejak

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.