Vulnerabilities > CVE-2006-0546 - Remote Security vulnerability in Egeinternet

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

egeinternet

NVD

Published: 2006-02-04

Updated: 2018-10-19

Summary

Unspecified vulnerability in index.php in a certain application available from /v1/tr/portfoy.php on www.egeinternet.com allows remote attackers to execute arbitrary code via "evilcode" in the key parameter, possibly a PHP remote file include vulnerability in which the attack vector is a URL in the key parameter. NOTE: it is not clear whether this vulnerability is associated with an online service or application service provider. If so, then it should not be included in CVE.

Vulnerable Configurations

Part	Description	Count
Application	Egeinternet Egeinternet Egeinternet *	1

References

http://www.securityfocus.com/archive/1/423365/100/0/threaded