Vulnerability Details : CVE-2006-2405
Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the ABBC[Config][smileset] parameter to unb_lib/abbc.css.php.
Vulnerability category: Directory traversal
Products affected by CVE-2006-2405
- cpe:2.3:a:unclassified_newsboard:unclassified_newsboard:*:*:*:*:*:*:*:*
- cpe:2.3:a:unclassified_newsboard:unclassified_newsboard:1.5.3:*:*:*:*:*:*:*
- cpe:2.3:a:unclassified_newsboard:unclassified_newsboard:1.5.3_patch3:*:*:*:*:*:*:*
- cpe:2.3:a:unclassified_newsboard:unclassified_newsboard:1.5.3a:*:*:*:*:*:*:*
- cpe:2.3:a:unclassified_newsboard:unclassified_newsboard:1.6.1:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2006-2405
4.49%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 92 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2006-2405
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST |
References for CVE-2006-2405
-
http://retrogod.altervista.org/unb_161p1_incl_xpl.html
Exploit
-
http://www.securityfocus.com/archive/1/433686/100/0/threaded
-
http://newsboard.unclassified.de/forum/post/6499
Patch
-
http://www.vupen.com/english/advisories/2006/1782
-
https://exchange.xforce.ibmcloud.com/vulnerabilities/26507
-
http://securityreason.com/securityalert/899
-
http://www.securityfocus.com/bid/17947
Exploit
Jump to