CVE-2007-0599 - OpenCVE

Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:L/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Aztek Forum	Aztek Forum

Configuration 1 [-]

cpe:2.3:a:aztek_forum:aztek_forum:4.0:*:*:*:*:*:*:*

References

Link	Resource
http://acid-root.new.fr/poc/21070125.txt	Exploit
http://osvdb.org/33596
http://www.securityfocus.com/archive/1/458076/100/0/threaded
http://www.securityfocus.com/archive/1/458123/100/0/threaded

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2007-01-30T18:00:00

Updated: 2018-10-16T14:57:01

Reserved: 2007-01-30T00:00:00

Link: CVE-2007-0599

JSON object: View

NVD Information

Status : Modified

Published: 2007-01-30T18:28:00.000

Modified: 2018-10-16T16:33:32.433

Link: CVE-2007-0599

JSON object: View

Redhat Information

No data.

CWE

NVD-CWE-Other

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-01-25T00:00:00", "descriptions": [{"lang": "en", "value": "Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2018-10-16T14:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"tags": ["x_refsource_MISC"], "url": "http://acid-root.new.fr/poc/21070125.txt"}, {"name": "20070125 Aztek Forum 4.1 Multiple Vulnerabilities Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/458076/100/0/threaded"}, {"name": "33596", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/33596"}, {"name": "20070125 Re: Aztek Forum 4.1 Multiple Vulnerabilities Exploit", "tags": ["mailing-list", "x_refsource_BUGTRAQ"], "url": "http://www.securityfocus.com/archive/1/458123/100/0/threaded"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-0599", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://acid-root.new.fr/poc/21070125.txt", "refsource": "MISC", "url": "http://acid-root.new.fr/poc/21070125.txt"}, {"name": "20070125 Aztek Forum 4.1 Multiple Vulnerabilities Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/458076/100/0/threaded"}, {"name": "33596", "refsource": "OSVDB", "url": "http://osvdb.org/33596"}, {"name": "20070125 Re: Aztek Forum 4.1 Multiple Vulnerabilities Exploit", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/archive/1/458123/100/0/threaded"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-0599", "datePublished": "2007-01-30T18:00:00", "dateReserved": "2007-01-30T00:00:00", "dateUpdated": "2018-10-16T14:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:aztek_forum:aztek_forum:4.0:*:*:*:*:*:*:*", "matchCriteriaId": "BEF91FDD-2582-4E67-BAA6-4B4EA4114E02", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Variable overwrite vulnerability in common/config.php in Aztek Forum 4.00 allows remote attackers to overwrite arbitrary program variables and conduct other unauthorized activities, such as copying arbitrary files using index/common_actions.php, via vectors associated with extract operations on the (1) POST, (2) GET, (3) COOKIE, and (4) SERVER superglobal arrays."}, {"lang": "es", "value": "Vulnerabilidad de sobrescritura de variable en common/config.php de Aztek Forum 4.00 permite a atacantes remotos sobrescribir variables de programa de su elecci\u00f3n y llevar a cabo otroas actividades no autorizadas, tales como copiar archivos de su elecci\u00f3n usando index/common_actions.php, a trav\u00e9s de vectores asociados con operaciones de extracci\u00f3n en los arrays super-globales (1) POST, (2) GET, (3) COOKIE, y (4) SERVER."}], "id": "CVE-2007-0599", "lastModified": "2018-10-16T16:33:32.433", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-01-30T18:28:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://acid-root.new.fr/poc/21070125.txt"}, {"source": "cve@mitre.org", "url": "http://osvdb.org/33596"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/458076/100/0/threaded"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/archive/1/458123/100/0/threaded"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}], "source": "nvd@nist.gov", "type": "Primary"}]}