PHP-Fusion File Upload Restriction Bypass

2006-05-08T05:32:37
ID OSVDB:25537
Type osvdb
Reporter retrogod(rgod@austici.org)
Modified 2006-05-08T05:32:37

Description

Vulnerability Description

PHP-Fusion contains a flaw that may allow a malicious user to upload avatar images with multiple file extensions. It is possible that the flaw may allow to execute arbitrary PHP code if used, for example, in conjunction with apache mod_mime module.

Technical Description

An attacker must supply valid authentication credentials in order to exploit this vulnerability.

Solution Description

Upgrade to version 6.00.307 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

PHP-Fusion contains a flaw that may allow a malicious user to upload avatar images with multiple file extensions. It is possible that the flaw may allow to execute arbitrary PHP code if used, for example, in conjunction with apache mod_mime module.

References:

Vendor URL: http://www.php-fusion.co.uk/ Secunia Advisory ID:19992 Related OSVDB ID: 25538 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-05/0152.html FrSIRT Advisory: ADV-2006-1735 CVE-2006-2330 Bugtraq ID: 17898