Vulnerabilities > CVE-2004-1219 - Unspecified vulnerability in PHP Arena Pafiledb 3.1

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
php-arena
nessus
NVD
Published: 2005-01-10
Updated: 2017-07-11

Summary

paFileDB 3.1, when using sessions authentication and while the administrator logs on, allows remote attackers to read the administrator's password hash and conduct brute force password guessing attacks by listing the contents of the sessions directory and reading the associated file for the administrator session.

Vulnerable Configurations

Part Description Count
Application
Php_Arena
1

Nessus

  • NASL familyCGI abuses
    NASL idPAFILEDB_MULTIPLE_VULNS.NASL
    descriptionThe remote host is running a version of paFileDB that is prone to a wide variety of vulnerabilities, including arbitrary file uploads, local file inclusion, SQL injection, and cross-site scripting issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id17329
    published2005-03-15
    reporterThis script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/17329
    titlepaFileDB <= 3.1 Multiple Vulnerabilities (2)
  • NASL familyCGI abuses
    NASL idPAFILEDB_CMD_EXEC.NASL
    descriptionThe remote host is running a version of paFileDB that is prone to a wide variety of vulnerabilities, including arbitrary file uploads, local file inclusion, SQL injection, and cross-site scripting issues.
    last seen2020-06-01
    modified2020-06-02
    plugin id11806
    published2003-07-24
    reporterThis script is Copyright (C) 2003-2018 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/11806
    titlepaFileDB <= 3.1 Multiple Vulnerabilities (1)
  • NASL familyCGI abuses
    NASL idPAFILEDB_PASSWD_DISCLOSURE.NASL
    descriptionAccording to its version number, the remote installation of paFileDB is vulnerable to an attack that would allow the attacker to view the password hash of user accounts, including an administrator account, by making a direct request to the application
    last seen2020-06-01
    modified2020-06-02
    plugin id15911
    published2004-12-06
    reporterThis script is Copyright (C) 2004-2018 Tenable Network Security, Inc.
    sourcehttps://www.tenable.com/plugins/nessus/15911
    titlepaFileDB sessions Directory Admin Hashed Password Disclosure

References