Vulnerabilities > CVE-2006-2405 - Local File Include vulnerability in Unclassified NewsBoard ABBC.CSS.PHP
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the ABBC[Config][smileset] parameter to unb_lib/abbc.css.php. Successful exploitation requires that "register_globals" is enabled and that "magic_quotes_gpc" is disabled.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 5 |
Exploit-Db
| description | Unclassified NewsBoard <= 1.6.1 patch 1 Arbitrary Local Inclusion Exploit. CVE-2006-2405,CVE-2006-2406. Webapps exploit for php platform |
| id | EDB-ID:1777 |
| last seen | 2016-01-31 |
| modified | 2006-05-11 |
| published | 2006-05-11 |
| reporter | rgod |
| source | https://www.exploit-db.com/download/1777/ |
| title | Unclassified NewsBoard <= 1.6.1 patch 1 - Arbitrary Local Inclusion Exploit |
References
- http://newsboard.unclassified.de/forum/post/6499
- http://retrogod.altervista.org/unb_161p1_incl_xpl.html
- http://secunia.com/advisories/20090
- http://securityreason.com/securityalert/899
- http://www.osvdb.org/25494
- http://www.securityfocus.com/archive/1/433686/100/0/threaded
- http://www.securityfocus.com/bid/17947
- http://www.vupen.com/english/advisories/2006/1782
- https://exchange.xforce.ibmcloud.com/vulnerabilities/26507