LMO for Joomla lmo.php mosConfig_absolute_path Variable Remote File Inclusion

2006-07-31T01:23:11
ID OSVDB:28996
Type osvdb
Reporter OSVDB
Modified 2006-07-31T01:23:11

Description

Solution Description

Upgrade to version 1.0b3 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,79477.0.html Vendor Specific News/Changelog Entry: http://forum.joomla.org/index.php/topic,81590.0.html FrSIRT Advisory: ADV-2006-3063 CVE-2006-3970