ID CVE-2006-3554
Summary Directory traversal vulnerability in index.php in MKPortal 1.0.1 Final allows remote attackers to include and execute arbitrary local files via directory traversal sequences in the language cookie, as demonstrated by using a gl_session cookie to inject PHP sequences into the error.log file, which is then included by index.php with malicious commands accessible by the ind parameter.
References
Vulnerable Configurations
  • cpe:2.3:a:mkportal:mkportal:1.0.1_final:*:*:*:*:*:*:*
    cpe:2.3:a:mkportal:mkportal:1.0.1_final:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 18-10-2018 - 16:47)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 18707
bugtraq 20060628 MKPortal 1.0.1 Final ($ind) File Include Vulnerability (perl)
misc http://www.worlddefacers.de/Public/WD-MKP.txt
sectrack 1016403
secunia 20884
sreason 1234
vupen ADV-2006-2598
xf mkportal-index-file-include(27451)
Last major update 18-10-2018 - 16:47
Published 13-07-2006 - 00:05
Last modified 18-10-2018 - 16:47
Back to Top