FreeBSD Ports: phpbb

phpbb cross-site scripting vulnerabilit

Reporter	Title	Published	Views	Family All 8
Tenable Nessus	phpBB < 2.0.14 Cookie Authentication Bypass and SQL Injection Vulnerabilities	7 Mar 200500:00	–	nessus
Tenable Nessus	phpBB <= 2.0.13 Multiple Vulnerabilities	9 Mar 200500:00	–	nessus
CVE	CVE-2005-0673	7 Mar 200505:00	–	cve
Cvelist	CVE-2005-0673	7 Mar 200505:00	–	cvelist
EUVD	EUVD-2005-0674	7 Oct 202500:30	–	euvd
NVD	CVE-2005-0673	2 May 200504:00	–	nvd
OpenVAS	FreeBSD Ports: phpbb	4 Sep 200800:00	–	openvas
UbuntuCve	CVE-2005-0673	2 May 200504:00	–	ubuntucve

#
#VID 4a0b334d-8d8d-11d9-afa0-003048705d5a
# OpenVAS Vulnerability Test
# $
# Description: Auto generated from vuxml or freebsd advisories
#
# Authors:
# Thomas Reinke <[email protected]>
#
# Copyright:
# Copyright (c) 2008 E-Soft Inc. http://www.securityspace.com
# Text descriptions are largely excerpted from the referenced
# advisories, and are Copyright (c) the respective author(s)
#
# This program is free software; you can redistribute it and/or modify
# it under the terms of the GNU General Public License version 2,
# as published by the Free Software Foundation
#
# This program is distributed in the hope that it will be useful,
# but WITHOUT ANY WARRANTY; without even the implied warranty of
# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the
# GNU General Public License for more details.
#
# You should have received a copy of the GNU General Public License
# along with this program; if not, write to the Free Software
# Foundation, Inc., 51 Franklin St, Fifth Floor, Boston, MA 02110-1301 USA.
#

include("revisions-lib.inc");
tag_insight = "The following package is affected: phpbb

CVE-2005-0673:
phpbb suffers from a cross-site scripting vulnerability in
usercp_register.php which allows remote attackers to inject
arbitrary web script or HTML by setting the (1) allowhtml,
(2) allowbbcode, or (3) allowsmilies parameters to inject
HTML into signatures for personal messages, possibly when
they are processed by privmsg.php or viewtopic.php.";
tag_solution = "Update your system with the appropriate patches or
software upgrades.

http://marc.theaimsgroup.com/?l=bugtraq&m=110987231502274
http://marc.theaimsgroup.com/?l=bugtraq&m=110988400407204
http://www.vuxml.org/freebsd/4a0b334d-8d8d-11d9-afa0-003048705d5a.html";
tag_summary = "The remote host is missing an update to the system
as announced in the referenced advisory.";


if(description)
{
 script_id(52163);
 script_version("$Revision: 4148 $");
 script_tag(name:"last_modification", value:"$Date: 2016-09-27 07:32:19 +0200 (Tue, 27 Sep 2016) $");
 script_tag(name:"creation_date", value:"2008-09-04 20:41:11 +0200 (Thu, 04 Sep 2008)");
 script_cve_id("CVE-2005-0673");
 script_tag(name:"cvss_base", value:"4.3");
 script_tag(name:"cvss_base_vector", value:"AV:N/AC:M/Au:N/C:N/I:P/A:N");
 script_name("FreeBSD Ports: phpbb");



 script_category(ACT_GATHER_INFO);

 script_copyright("Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com");
 script_family("FreeBSD Local Security Checks");
 script_dependencies("gather-package-list.nasl");
 script_mandatory_keys("ssh/login/freebsdrel", "login/SSH/success");
 script_tag(name : "insight" , value : tag_insight);
 script_tag(name : "solution" , value : tag_solution);
 script_tag(name : "summary" , value : tag_summary);
 script_tag(name:"qod_type", value:"package");
 script_tag(name:"solution_type", value:"VendorFix");
 exit(0);
}

#
# The script code starts here
#

include("pkg-lib-bsd.inc");

txt = "";
vuln = 0;
bver = portver(pkg:"phpbb");
if(!isnull(bver) && revcomp(a:bver, b:"2.0.13")<=0) {
    txt += 'Package phpbb version ' + bver + ' is installed which is known to be vulnerable.\n';
    vuln = 1;
}

if(vuln) {
    security_message(data:string(txt));
} else if (__pkg_match) {
    exit(99); # Not vulnerable.
}

27 Sep 2016 00:00Current

6.7Medium risk

Vulners AI Score6.7

EPSS0.00335