CERT-In Advisory
CIAD-2004-0023
Multiple vulnerabilities in phpBB
Original Issue Date: December 22, 2004
Severity Rating: High
Systems Affected
Overview
phpBB is a popular Open Source bulletin board package. Three vulnerabilities have been reported affecting versions 2.0.10 and below.
Description
Several vulnerabilities have been reported in phpBB, an open-source bulletin board. These vulnerabilities may allow an attacker to execute arbitrary commands, perform SQL injection and cross-site scripting attacks. 1 A lack of input validation on the highlight parameter supplied to viewtopic.php may allow a remote attacker to execute arbitrary commands on the server using vulnerable phpBB.
2 Input passed to the username handling is not properly scanned for malicious content before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user's browser session.
3 Inputs passed to the username handling is not properly scanned for malicious content before being used in a SQL query. A malicious user can exploit this vulnerability by injecting arbitrary SQL code.
Solution
Update to phpBB version 2.0.11.
Vendor Information
1
http://www.phpbb.com/downloads.php
References
http://www.kb.cert.org/vuls/id/497400
http://secunia.com/advisories/13239/
http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=240636
http://news.zdnet.com/2100-1009_22-5496086.html?tag=nl
http://www.phpbb.com/phpBB/viewtopic.php?f=14&t=240513
Disclaimer
The information provided herein is on "as is" basis, without warranty of any kind.
Contact Information
Email: info@cert-in.org.in Phone: +91-11-2436857
Postal address
Indian Computer Emergency Response Team (CERT-In)
Ministry of Electronics and Information Technology
Government of India
Electronics Niketan
6, CGO Complex, Lodhi Road,
New Delhi - 110 003
India
|