CVE-2008-2905

Current Description

PHP remote file inclusion vulnerability in includes/Cache/Lite/Output.php in the Cache_Lite package in Mambo 4.6.4 and earlier, when register_globals is enabled, allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

Basic Data

PublishedJune 30, 2008
Last ModifiedSeptember 29, 2017
Assignercve@mitre.org
Data TypeCVE
Data FormatMITRE
Data Version4.0
Problem TypeCWE-94
CVE Data Version4.0

Base Metric V2

CVSS 2 - Version2.0
CVSS 2 - Vector StringAV:N/AC:M/Au:N/C:P/I:P/A:P
CVSS 2 - Access VectorNETWORK
CVSS 2 - Access ComplexityMEDIUM
CVSS 2 - AuthenticationNONE
CVSS 2 - Confidentiality ImpactPARTIAL
CVSS 2 - Availability ImpactPARTIAL
CVSS 2 - Base Score6.8
SeverityMEDIUM
Exploitability Score8.6
Impact Score6.4
Obtain All Privilegefalse
Obtain User Privilegefalse
Obtain Other Privilegetrue

Base Metric V3

No data provided.

Configurations

  • OR - Configuration 1
    Cpe VersionPartVendorProductVersionUpdateEditionLanguageSW EditionTarget SWTarget HWOtherVersion Start IncludingVersion End IncludingVersion Start ExcludingVersion End Excluding
    2.3ApplicationMamboMambo4.0.14*******
    2.3ApplicationMamboMambo4.5*******
    2.3ApplicationMamboMambo4.5.0.2*******
    2.3ApplicationMamboMambo4.5.1.3*******
    2.3ApplicationMamboMambo4.5.1_1.0.9*******
    2.3ApplicationMamboMambo4.5.1_beta*******
    2.3ApplicationMamboMambo4.5.1_beta2*******
    2.3ApplicationMamboMambo4.5.1a*******
    2.3ApplicationMamboMambo4.5.2*******
    2.3ApplicationMamboMambo4.5.2.1*******
    2.3ApplicationMamboMambo4.5.2.2*******
    2.3ApplicationMamboMambo4.5.2.3*******
    2.3ApplicationMamboMambo4.5.3h*******
    2.3ApplicationMamboMambo4.5.4*******
    2.3ApplicationMamboMambo4.5_1.0.0*******
    2.3ApplicationMamboMambo4.5_1.0.1*******
    2.3ApplicationMamboMambo4.5_1.0.2*******
    2.3ApplicationMamboMambo4.5_1.0.3_beta*******
    2.3ApplicationMamboMambo4.5_1.0.9*******
    2.3ApplicationMamboMambo4.6*******
    2.3ApplicationMamboMambo4.6.1*******
    2.3ApplicationMamboMambo4.6.2*******
    2.3ApplicationMamboMambo4.6.4*******

Vulnerable Software List

VendorProductVersions
Mambo Mambo 4.0.14, 4.5, 4.5.0.2, 4.5.1.3, 4.5.1_1.0.9, 4.5.1_beta, 4.5.1_beta2, 4.5.1a, 4.5.2, 4.5.2.1, 4.5.2.2, 4.5.2.3, 4.5.3h, 4.5.4, 4.5_1.0.0, 4.5_1.0.1, 4.5_1.0.2, 4.5_1.0.3_beta, 4.5_1.0.9, 4.6, 4.6.1, 4.6.2, 4.6.4

References

NameSourceURLTags
30685http://secunia.com/advisories/30685SECUNIAVendor Advisory
29716http://www.securityfocus.com/bid/29716BIDExploit
1020295http://www.securitytracker.com/id?1020295SECTRACK
mambo-output-file-include(43101)https://exchange.xforce.ibmcloud.com/vulnerabilities/43101XF
5808https://www.exploit-db.com/exploits/5808EXPLOIT-DB