Lucene search
SAINT CorporationSAINT:FE44D5D2FA02E9A1FA485490FAC4A21BHistoryJun 23, 2006 - 12:00 a.m.
BASE base_qry_common.php file include
2006-06-2300:00:00
SAINT Corporation
download.saintcorporation.com
8
0.953 High
EPSS
Percentile
99.4%
Added: 06/23/2006
CVE: CVE-2006-2685
BID: 18298
OSVDB: 25770
Background
Snort is an open-source intrusion detection system. The Basic Analysis and Security Engine (BASE) is a web interface for analyzing Snort results.
Problem
If the register_globals PHP option is enabled, the **base_qry_common.php** script can be used to include arbitrary files under the directory specified by the **BASE_path** parameter. This could lead to execution of local or remote PHP code.
Resolution
Upgrade to BASE 1.2.5 or higher.
References
<http://secunia.com/advisories/20300>
Limitations
In order for this exploit to succeed, the register_globals option must be enabled in the PHP configuration, and the Apache log file must exist in a common location.
Related
saint
saint
BASE base_qry_common.php file include
2006-06-23 00:00:00
BASE base_qry_common.php file include
2006-06-23 00:00:00
BASE base_qry_common.php file include
2006-06-23 00:00:00
ubuntucve
ubuntucve
CVE-2006-2685
2006-05-31 00:00:00
cvelist
cvelist
CVE-2006-2685
2006-05-31 10:00:00
nvd
nvd
CVE-2006-2685
2006-05-31 10:06:00
prion
prion
Remote file inclusion
2006-05-31 10:06:00
cve
cve
CVE-2006-2685
2006-05-31 10:06:00
packetstorm
packetstorm
BASE base_qry_common Remote File Include
2009-10-30 00:00:00
nessus
nessus
BASE Multiple Script BASE_path Parameter Remote File Inclusion
2006-05-27 00:00:00