Invision Power Board sm_install.php Administrative Privileges

2003-07-11T00:00:00
ID OSVDB:3372
Type osvdb
Reporter OSVDB
Modified 2003-07-11T00:00:00

Description

Vulnerability Description

Invision Power Board contains a flaw that allows a remote attacker to gain administrative access to the forum. If the install.lock file is removed for any reason, a remote attacker can provide a custom URI to access the sm_install.php script to gain full privileges.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Invision Power Services has released a patch to address this vulnerability.

Short Description

Invision Power Board contains a flaw that allows a remote attacker to gain administrative access to the forum. If the install.lock file is removed for any reason, a remote attacker can provide a custom URI to access the sm_install.php script to gain full privileges.

References:

Vendor URL: http://www.invisionboard.com/ Vendor Specific Solution URL: http://forums.invisionpower.com/index.php?act=ST&f=1&t=55976 Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2003-07/0136.html ISS X-Force ID: 12588 Bugtraq ID: 8165