Lucene search

[email protected]CVE-2004-1573

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-1573

2004-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

aj-fork 167

php code execution

local privilege escalation

permissions vulnerability

8.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON

The documentation for AJ-Fork 167 implies that users should set permissions for users.db.php to 777, which allows local users to execute arbitrary PHP code and gain privileges as the administrator.

CPENameOperatorVersion
aj-fork:aj-forkaj-forkeq167
cutephp:cutenewscutephp cutenewseq1.3.6
cutephp:cutenewscutephp cutenewseq1.3.2
cutephp:cutenewscutephp cutenewseq0.88
cutephp:cutenewscutephp cutenewseq1.3
cutephp:cutenewscutephp cutenewseq1.3.1

CPE	Name	Operator	Version
aj-fork:aj-fork	aj-fork	eq	167
cutephp:cutenews	cutephp cutenews	eq	1.3.6
cutephp:cutenews	cutephp cutenews	eq	1.3.2
cutephp:cutenews	cutephp cutenews	eq	0.88
cutephp:cutenews	cutephp cutenews	eq	1.3
cutephp:cutenews	cutephp cutenews	eq	1.3.1

References

echo.or.id/adv/adv07-y3dips-2004.txt

marc.info/?l=bugtraq&m=109664986210763&w=2

securitytracker.com/id?1011484

www.securityfocus.com/bid/11301

exchange.xforce.ibmcloud.com/vulnerabilities/17571

8.2 High

AI Score

Confidence

Low

7.2 High

CVSS2

Access Vector

LOCAL

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:C/I:C/A:C

0.0004 Low

EPSS

Percentile

5.3%

JSON