CVE-2005-3738

globals.php in Mambo Site Server 4.0.14 and earlier, when register_globals is disabled, allows remote attackers to overwrite variables in the GLOBALS array and conduct various attacks, as demonstrated using the mosConfig_absolute_path parameter to content.html.php for remote PHP file inclusion.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:mambo:mambo_site_server:4.0:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.10:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.11:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.12:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.12_beta:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.12_beta_2:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.12_rc1:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.12_rc2:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.12_rc3:*:*:*:*:*:*:*
cpe:2.3:a:mambo:mambo_site_server:4.0.14:*:*:*:*:*:*:*

History

21 Nov 2024, 00:02

Type Values Removed Values Added
References () http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0520.html - Exploit, Vendor Advisory () http://archives.neohapsis.com/archives/fulldisclosure/2005-11/0520.html - Exploit, Vendor Advisory
References () http://forum.mamboserver.com/showthread.php?t=66154 - () http://forum.mamboserver.com/showthread.php?t=66154 -
References () http://secunia.com/advisories/17622 - () http://secunia.com/advisories/17622 -
References () http://securitytracker.com/id?1015258 - () http://securitytracker.com/id?1015258 -
References () http://www.securityfocus.com/archive/1/417215 - Exploit () http://www.securityfocus.com/archive/1/417215 - Exploit
References () http://www.securityfocus.com/archive/1/426942/100/0/threaded - () http://www.securityfocus.com/archive/1/426942/100/0/threaded -
References () http://www.securityfocus.com/archive/1/427196/100/0/threaded - () http://www.securityfocus.com/archive/1/427196/100/0/threaded -
References () http://www.securityfocus.com/bid/15461 - () http://www.securityfocus.com/bid/15461 -
References () http://www.vupen.com/english/advisories/2005/2473 - () http://www.vupen.com/english/advisories/2005/2473 -

Information

Published : 2005-11-22 11:03

Updated : 2024-11-21 00:02


NVD link : CVE-2005-3738

Mitre link : CVE-2005-3738

CVE.ORG link : CVE-2005-3738


JSON object : View

Products Affected

mambo

  • mambo_site_server