PHPBB_HIGHLIGHT_PARAM_EXPLOIT
Publish Date: 04 Februar 2011
Schweregrad:: Kritisch
Hinweisdatum: 04 Februar 2011
Beschreibung
A Remote Command Execution vulnerability has been found in phpBB version 2.0.10 and below. Inputs to several HTTP requests are not validated by this script. Once this vulnerability is successfully exploited, a remote malicious user can view the content of arbitrary files on the system with the privileges of the Web server.
phpBB is an open source bulletin board system.
Trend Micro Lösungen
Download the latest NVW pattern file from this site:
http://www.trendmicro.com/download/product.asp?productid=45
Betroffene Software und Version:
- phpBB version 2.0.10 and below