1. CVE-Search
  2. CVE-2006-3336
ID CVE-2006-3336
Summary TWiki 01-Dec-2000 up to 4.0.3 allows remote attackers to bypass the upload filter and execute arbitrary code via filenames with double extensions such as ".php.en", ".php.1", and other allowed extensions that are not .txt. NOTE: this is only a vulnerability when the server allows script execution in the pub directory.
References
Vulnerable Configurations
  • cpe:2.3:a:twiki:twiki:4.0:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:4.0:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:4.0.0:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:4.0.0:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:4.0.1:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:4.0.1:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:4.0.2:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:4.0.2:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:4.0.3:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:4.0.3:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2000-12-01:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2000-12-01:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2001-09-01:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2001-09-01:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2001-12-01:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2001-12-01:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2003-02-01:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2003-02-01:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2004-09-01:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2004-09-01:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2004-09-02:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2004-09-02:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2004-09-03:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2004-09-03:*:*:*:*:*:*:*
  • cpe:2.3:a:twiki:twiki:2004-09-04:*:*:*:*:*:*:*
    cpe:2.3:a:twiki:twiki:2004-09-04:*:*:*:*:*:*:*
CVSS
Base: 4.0 (as of 08-03-2011 - 02:38)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK HIGH NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL NONE
cvss-vector via4 AV:N/AC:H/Au:N/C:P/I:P/A:N
refmap via4
bid 18854
confirm http://twiki.org/cgi-bin/view/Codev/SecurityAlertSecureFileUploads
sectrack 1016458
secunia 20992
vupen ADV-2006-2677
Last major update 08-03-2011 - 02:38
Published 05-07-2006 - 20:05
Last modified 08-03-2011 - 02:38
Back to Top