Info

Last Modified

about 1 year ago

Percent Complete

10%

Disclosure

Oct 17, 2007

Discovery

Unknown

Dates

Exploit

Unknown

Solution

Unknown

This Entry needs help! It is only 10% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Keywords

DRUPAL-SA-2007-025

Description

(Description Provided by CVE) : install.php in Drupal 5.x before 5.3, when the configured database server is not reachable, allows remote attackers to execute arbitrary code via vectors that cause settings.php to be modified.

Classification

Location: Remote/Network Access Required
OSVDB: Web Related

Products

Unknown or Incomplete

References

Related OSVDB ID:
CVE ID: 2007-5593 (see also: NVD)
Bugtraq ID: 26119
Secunia Advisory ID: 27290 27352
ISS X-Force ID: 37265
Vendor Specific Solution URL: http://drupal.org/files/sa-2007-025/SA-2007-025-5.2.patch
Vendor Specific Advisory URL: http://drupal.org/node/184316
Other Advisory URL: https://www.redhat.com/archives/fedora-package-announce/2007-October/msg00328.htm ......

Tools & Filters

Nessus	27783

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches