OSVDB ID: 34817

Title: Crea-book admin/configurer2.php Fond de la page Field Arbitrary Code Execution

Info

Disclosure

Apr 10, 2007

Discovery

Unknown

Dates

Exploit

Apr 10, 2007

Solution

Unknown

Description

Crea-book contains a flaw that may allow a remote attacker to gain elevated privileges. The issue is due to the admin/configurer2.php script not properly sanitizing user-supplied input before passing it to the config.inc.php3 script. By passing crafted content to the "Fond de la page" (background color) field, an attacker can execute arbitrary PHP code.

Classification

Location: Remote / Network Access
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Public
OSVDB: Web Related

Solution

Currently, there are no known upgrades, patches, or workarounds available to correct this issue.

Products

Raphaël LIMBACH

Crea-book

1.0

References

CVE ID: 2007-2001 (see also: NVD)
Secunia Advisory ID: 24862
Related OSVDB ID: 34816 34818
Exploit Database: 3701
Milw0rm: 3701
Vendor URL: http://www.comscripts.com/scripts/php.creabook.1359.html

Credit

Xst3nZ - xst3nzgmail.com -

Direct URL: http://osvdb.org/34817