• info
• discussion
• exploit
• solution
• references

FCKeditor 'CurrentFolder' Parameter Arbitrary File Upload Vulnerability

Solution:
Updates are available. Please see the references for more information.


Debian Linux 5.0 ia-64

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 alpha

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 ia-32

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 s/390

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 mipsel

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

FCKeditor FCKeditor 2.2

• FCKeditor FCKeditor_2.6.4.1.tar.gz
  http://prdownloads.sourceforge.net/fckeditor/FCKeditor_2.6.4.1.tar.gz? download

Debian Linux 5.0 hppa

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 m68k

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 arm

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 armel

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 amd64

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

FCKeditor FCKeditor 2.3 beta

• FCKeditor FCKeditor_2.6.4.1.tar.gz
  http://prdownloads.sourceforge.net/fckeditor/FCKeditor_2.6.4.1.tar.gz? download

Debian Linux 5.0 mips

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 powerpc

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

Debian Linux 5.0 sparc

• Debian fckeditor_2.6.2-1lenny1_all.deb
  http://security.debian.org/pool/updates/main/f/fckeditor/fckeditor_2.6 .2-1lenny1_all.deb

FCKeditor FCKeditor 2.0 rc3

• FCKeditor FCKeditor_2.6.4.1.tar.gz
  http://prdownloads.sourceforge.net/fckeditor/FCKeditor_2.6.4.1.tar.gz? download

FCKeditor FCKeditor 2.0 RC2

• FCKeditor FCKeditor_2.6.4.1.tar.gz
  http://prdownloads.sourceforge.net/fckeditor/FCKeditor_2.6.4.1.tar.gz? download

FCKeditor FCKeditor 2.4.3

• FCKeditor FCKeditor_2.6.4.1.tar.gz
  http://prdownloads.sourceforge.net/fckeditor/FCKeditor_2.6.4.1.tar.gz? download

FCKeditor FCKeditor 2.6.4

• FCKeditor FCKeditor_2.6.4.1.tar.gz
  http://prdownloads.sourceforge.net/fckeditor/FCKeditor_2.6.4.1.tar.gz? download