ISS X-Force Database: activitymodplus-multiple-file-include(26857): Activity Mod Plus for phpBB "phpbb_root

Activity Mod Plus for phpBB "phpbb_root_path" file include

activitymodplus-multiple-file-include (26857)

Medium Risk

Description:

Activity Mod Plus for phpBB could allow a remote attacker to arbitrary files. If register_globals is enabled, a remote attacker could send a specially-crafted URL request to the language/lang_english/lang_activity.php or lang_activity_char.php script using the 'phpbb_root_path' parameter to specify an arbitrary file from the local or a remote system, which could allow the attacker to obtain sensitive information or execute arbitrary code on the vulnerable system.

Platforms Affected:

phpBB-Amod, Activity Mod Plus 2.x and prior

Remedy:

Refer to the phpBB-TweakS Forum posting dated Mon May 29, 2006 6:12 am for patch information. See References.

Consequences:

Gain Access

References:

BugTraq Mailing List, Sun May 28 2006 - 09:05:12 CDT , Advisory: phpBB 2.x (Activity MOD Plus) File Inclusion Vulnerability. at http://archives.neohapsis.com/archives/bugtraq/2006-05/0642.html.
phpBB-Amod Web site, phpBB-Amod Forum Index at http://www.phpbb-amod.com/main.html.
phpBB-Amod Web site, Activity Mod Code Change Instructions at http://www.phpbb-amod.com/topics.html-t-2423.
phpBB-TweakS Forum, Mon May 29, 2006 6:12 am, Post subject: Possible Trojan at http://phpbb-tweaks.com/topics.html-p-17623.
BID-18155: PHPBB-Amod Lang_Activity.PHP Remote File Include Vulnerability
CVE-2006-2735: PHP remote file inclusion vulnerability in language/lang_english/lang_activity.php in Activity MOD Plus (Amod) 1.1.0, as used with phpBB when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the phpbb_root_path parameter. NOTE: This is a similar vulnerability to CVE-2006-2507.
OSVDB ID: 25821: Activity Mod Plus for phpBB phpbb_root_path Variable Remote File Inclusion
SA20354: phpBB Activity Mod Plus Module "phpbb_root_path" File Inclusion
VUPEN/ADV-2006-2045: Activity Mod Plus for phpBB phpbb_root_path Variable File Inclusion Vulnerability

Reported:

May 27, 2006

The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.

For corrections or additions please email xforce@iss.net

Return to the main page