phpBB Avatar_Path PHP Code Execution Vulnerability

Bugtraq ID: 20347
Class: Input Validation Error
CVE: CVE-2006-4758
Remote: Yes
Local: No
Published: Oct 04 2006 12:00AM
Updated: Feb 11 2008 02:06PM
Credit: ShAnKaR is credited with the discovery of this vulnerability.
Vulnerable: phpBB phpBB 2.0.21
phpBB phpBB 2.0.20
phpBB phpBB 2.0.18
phpBB phpBB 2.0.13
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1
Debian Linux 4.0 sparc
Debian Linux 4.0 s/390
Debian Linux 4.0 powerpc
Debian Linux 4.0 mipsel
Debian Linux 4.0 mips
Debian Linux 4.0 m68k
Debian Linux 4.0 ia-64
Debian Linux 4.0 ia-32
Debian Linux 4.0 hppa
Debian Linux 4.0 arm
Debian Linux 4.0 amd64
Debian Linux 4.0 alpha
Debian Linux 4.0
Not Vulnerable: phpBB phpBB 2.0.22


 

Privacy Statement
Copyright 2010, SecurityFocus