CVE-2007-1725 - SQL injection vulnerability in index.php in IceBB 1.0-rc5 allows remote authenticated users to execu

CVE-2007-1725

Summary

SQL injection vulnerability in index.php in IceBB 1.0-rc5 allows remote authenticated users to execute arbitrary SQL commands via the filename of an uploaded file to the avatar function, as demonstrated by setting admin privileges. Successful exploitation allows an attacker to gain administrator privileges, but requires that "magic_quotes_gpc" is disabled.

References

http://osvdb.org/34497
http://secunia.com/advisories/24644
http://www.securityfocus.com/bid/23158
http://www.vupen.com/english/advisories/2007/1116
https://exchange.xforce.ibmcloud.com/vulnerabilities/33240
https://www.exploit-db.com/exploits/3580
https://www.exploit-db.com/exploits/3581

Vulnerable Configurations

cpe:2.3:a:icebb:icebb:1.0_rc_5:*:*:*:*:*:*:*
cpe:2.3:a:icebb:icebb:1.0_rc_5:*:*:*:*:*:*:*

CVSS

Base:	9.3 (as of 19-10-2017 - 01:30)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	MEDIUM	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:M/Au:N/C:C/I:C/A:C

refmap via4

bid	23158
exploit-db	3580 3581
osvdb	34497
secunia	24644
vupen	ADV-2007-1116
xf	icebb-index-sql-injection(33240)

Last major update

19-10-2017 - 01:30

Published

28-03-2007 - 10:19

Last modified

19-10-2017 - 01:30