Home ▼ Bookkeeping
Online ▼ Security
Audits ▼
Managed
DNS ▼
About
Order
FAQ
Acceptable Use Policy
Dynamic DNS Clients
Configure Domains Dyanmic DNS Update Password Network
Monitor ▼
Enterprise Package
Advanced Package
Standard Package
Free Trial
FAQ
Price/Feature Summary
Order/Renew
Examples
Configure/Status Alert Profiles | |||
CVE ID: | CVE-2006-0824 |
Description: | Multiple unspecified vulnerabilities in lib-common.php in Geeklog 1.4.0 before 1.4.0sr1 and 1.3.11 before 1.3.11sr4 allow remote attackers to include arbitrary local files and execute arbitrary code via (1) absolute paths in unspecified parameters and (2) the language cookie, as demonstrated for code execution using error.log. |
Test IDs: | None available |
Cross References: |
Common Vulnerability Exposure (CVE) ID: CVE-2006-0824 BugTraq ID: 16755 http://www.securityfocus.com/bid/16755 Bugtraq: 20060219 Geeklog Remote Code Execution (Google Search) http://www.securityfocus.com/archive/1/425506/100/0/threaded http://www.gulftech.org/?node=research&article_id=00102-02192006 http://www.osvdb.org/23349 http://secunia.com/advisories/18920 http://www.vupen.com/english/advisories/2006/0661 |