GNUBoard doc index.php file include
| gnuboard-doc-index-file-include (18494) |  Medium Risk |
Description:
GNUBoard could allow a remote attacker to include malicious PHP files. If register_globals is enabled, a remote attacker could send a specially-crafted URL request to the index.php script that uses the doc variable to specify a malicious PHP file from a remote system as a parameter, which would allow the attacker to execute code on the vulnerable system.
Consequences:
Gain Access
Remedy:
Upgrade to the latest version of GNUBoard (3.40 or later), available from the GNUBoard Web site. See references.
References:
- BugTraq Mailing List, Wed Dec 15 2004 - 11:34:33 CST : STG Security Advisory: [SSA-20041214-14] GNUBoard PHP injection vulnerability.
- GNUBoard Web site: SIR.
- BID-11948: SIR GNUBoard Remote File Include Vulnerability
- CVE-2004-1403: PHP remote file inclusion vulnerability in index.php in GNUBoard 3.39 and earlier allows remote attackers to execute arbitrary PHP code by modifying the doc parameter to reference a URL on a remote web server that contains the code.
- SA13479: GNUBoard "doc" Parameter Arbitrary File Inclusion Vulnerability
Platforms Affected:
- SIR GNUBoard 3.39 and prior
Reported:
Dec 15, 2004
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net