CVE-2006-4651

Directory traversal vulnerability in download/index.php, and possibly download.php, in threesquared.net (aka Ben Speakman) Php download allows remote attackers to overwrite arbitrary local files via .. (dot dot) sequence in the file parameter.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://secunia.com/advisories/21774	Vendor Advisory
http://securityreason.com/securityalert/1528
http://www.securityfocus.com/archive/1/445269/100/0/threaded
http://www.securityfocus.com/bid/19872
http://www.vupen.com/english/advisories/2006/3479
https://exchange.xforce.ibmcloud.com/vulnerabilities/28751

Configurations

Configuration 1 (hide)

cpe:2.3:a:threesquared.net:php_download_script:*:*:*:*:*:*:*:*

History

No history.

Information

Published : 2006-09-09 00:04

Updated : 2024-02-04 16:52

NVD link : CVE-2006-4651

Mitre link : CVE-2006-4651

CVE.ORG link : CVE-2006-4651

JSON object : View

Products Affected

threesquared.net

php_download_script

CWE

NVD-CWE-Other

{"id": "CVE-2006-4651", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-09-09T00:04:00.000", "references": [{"url": "http://secunia.com/advisories/21774", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securityreason.com/securityalert/1528", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/445269/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/19872", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/3479", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/28751", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Directory traversal vulnerability in download/index.php, and possibly download.php, in threesquared.net (aka Ben Speakman) Php download allows remote attackers to overwrite arbitrary local files via .. (dot dot) sequence in the file parameter."}, {"lang": "es", "value": "Vulnerabilidad de atravesamiento de directorios en download/index.php, y posiblemente download.php, en threesquared.net (tambi\u00e9n conocido como Ben Speakman)la descarga Php permite a un atacante remoto sobre escribir ficheros locales de su elecci\u00f3n a trav\u00e9s de la secuencia ..(punto punto) in el par\u00e1metro file."}], "lastModified": "2018-10-17T21:38:52.013", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:threesquared.net:php_download_script:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D639D1F7-F381-4939-8629-666E93390A3A"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}