CVE-2005-2955 - config.inc.php in ATutor 1.5.1, and possibly earlier versions, uses an incomplete blacklist to check

CVE-2005-2955

Summary

config.inc.php in ATutor 1.5.1, and possibly earlier versions, uses an incomplete blacklist to check for dangerous file extensions, which allows authenticated administrators or educators to execute arbitrary code by uploading files with other executable extensions such as .inc, .php4, or others.

References

Vulnerable Configurations

cpe:2.3:a:adaptive_technology_resource_centre:atutor:1.5.1:*:*:*:*:*:*:*
cpe:2.3:a:adaptive_technology_resource_centre:atutor:1.5.1:*:*:*:*:*:*:*

CVSS

Base:	4.6 (as of 18-10-2016 - 03:31)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
LOCAL	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	PARTIAL	PARTIAL

cvss-vector via4

AV:L/AC:L/Au:N/C:P/I:P/A:P

refmap via4

bugtraq	20050914 ATutor 1.5.1 SQL Injection / Admin credentials disclosure / Information disclosure / User impersonation / Remote code execution
misc	http://rgod.altervista.org/atutor151.html

Last major update

18-10-2016 - 03:31

Published

16-09-2005 - 22:03

Last modified

18-10-2016 - 03:31