Lucene search

K
saintSAINT CorporationSAINT:99BB07DA75554E59FE09EBB7E380A891
HistoryJun 23, 2006 - 12:00 a.m.

BASE base_qry_common.php file include

2006-06-2300:00:00
SAINT Corporation
my.saintcorporation.com
12

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

EPSS

0.953

Percentile

99.4%

Added: 06/23/2006
CVE: CVE-2006-2685
BID: 18298
OSVDB: 25770

Background

Snort is an open-source intrusion detection system. The Basic Analysis and Security Engine (BASE) is a web interface for analyzing Snort results.

Problem

If the register_globals PHP option is enabled, the **base_qry_common.php** script can be used to include arbitrary files under the directory specified by the **BASE_path** parameter. This could lead to execution of local or remote PHP code.

Resolution

Upgrade to BASE 1.2.5 or higher.

References

<http://secunia.com/advisories/20300&gt;

Limitations

In order for this exploit to succeed, the register_globals option must be enabled in the PHP configuration, and the Apache log file must exist in a common location.

CVSS2

4

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

EPSS

0.953

Percentile

99.4%

Related for SAINT:99BB07DA75554E59FE09EBB7E380A891