Invision Power File Manager Unspecified Vulnerability

2003-07-15T00:00:00
ID OSVDB:3373
Type osvdb
Reporter OSVDB
Modified 2003-07-15T00:00:00

Description

Vulnerability Description

Invision Power File Manager contains a non descript vulnerability. Currently, the vendor has not released any details regarding the nature of the vulnerability, but has classified it as "severe". The issue is due to unspecified problems in the index.php and/or edit.php scripts.

Solution Description

Upgrade to version 1.0.1 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Note: The vendor has not changed version numbers with this patch. Some installations of 1.0.1 are vulnerable. Verify you have downloaded the latest version available.

Short Description

Invision Power File Manager contains a non descript vulnerability. Currently, the vendor has not released any details regarding the nature of the vulnerability, but has classified it as "severe". The issue is due to unspecified problems in the index.php and/or edit.php scripts.

References:

Vendor URL: http://www.invisionpower.com Secunia Advisory ID:9270 Generic Informational URL: http://forums.invisionpower.com/index.php?showtopic=78059