CVE-2006-2319

2006-05-12T00:02:00
ID CVE-2006-2319
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:39:00

Description

Ideal Science Ideal BB 1.5.4a and earlier does not properly check file extensions before permitting an upload, which allows remote attackers to upload and execute an ASP script via a 0x00 character before the ".asp" portion of the filename.