CVE-2007-0599
N/A
N/A
Summary
Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://acid-root.new.fr/poc/21070125.txt
- http://www.securityfocus.com/archive/1/458076/100/0/threaded
- http://osvdb.org/33596
- http://www.securityfocus.com/archive/1/458123/100/0/threaded
References
- http://acid-root.new.fr/poc/21070125.txt
- http://www.securityfocus.com/archive/1/458076/100/0/threaded
- http://osvdb.org/33596
- http://www.securityfocus.com/archive/1/458123/100/0/threaded
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.