CVE-2008-3710 - OpenCVE

Multiple directory traversal vulnerabilities in CyBoards PHP Lite 1.21 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) script_path parameter to (a) options.php and the (2) lang_code parameter to (b) copy_vip.php and (c) process_edit_board.php in adminopts/. NOTE: some of these vectors might not be vulnerabilities under proper installation.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity High

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

AV:N/AC:H/Au:N/C:P/I:P/A:P

Vendors & Products
CPE Configurations

Vendors	Products
Hotscripts	Cyboards Php Lite

Configuration 1 [-]

cpe:2.3:a:hotscripts:cyboards_php_lite:1.21:*:*:*:*:*:*:*

References

Link	Resource
http://packetstormsecurity.org/0808-exploits/cyboards-rfilfixss.txt	Exploit
http://www.attrition.org/pipermail/vim/2008-August/002052.html
http://www.securityfocus.com/bid/30688
https://exchange.xforce.ibmcloud.com/vulnerabilities/44475

History

No history.

MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2008-08-19T19:10:00

Updated: 2017-08-07T12:57:01

Reserved: 2008-08-19T00:00:00

Link: CVE-2008-3710

JSON object: View

NVD Information

Status : Modified

Published: 2008-08-19T19:41:00.000

Modified: 2017-08-08T01:32:06.200

Link: CVE-2008-3710

JSON object: View

Redhat Information

No data.

CWE

CWE-22

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-08-14T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple directory traversal vulnerabilities in CyBoards PHP Lite 1.21 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) script_path parameter to (a) options.php and the (2) lang_code parameter to (b) copy_vip.php and (c) process_edit_board.php in adminopts/. NOTE: some of these vectors might not be vulnerabilities under proper installation."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "30688", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/30688"}, {"tags": ["x_refsource_MISC"], "url": "http://packetstormsecurity.org/0808-exploits/cyboards-rfilfixss.txt"}, {"name": "20080819 CyBoards PHP uncertainties (RFI/path traversal)", "tags": ["mailing-list", "x_refsource_VIM"], "url": "http://www.attrition.org/pipermail/vim/2008-August/002052.html"}, {"name": "cyboardsphplite-multiple-file-include(44475)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44475"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-3710", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple directory traversal vulnerabilities in CyBoards PHP Lite 1.21 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) script_path parameter to (a) options.php and the (2) lang_code parameter to (b) copy_vip.php and (c) process_edit_board.php in adminopts/. NOTE: some of these vectors might not be vulnerabilities under proper installation."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "30688", "refsource": "BID", "url": "http://www.securityfocus.com/bid/30688"}, {"name": "http://packetstormsecurity.org/0808-exploits/cyboards-rfilfixss.txt", "refsource": "MISC", "url": "http://packetstormsecurity.org/0808-exploits/cyboards-rfilfixss.txt"}, {"name": "20080819 CyBoards PHP uncertainties (RFI/path traversal)", "refsource": "VIM", "url": "http://www.attrition.org/pipermail/vim/2008-August/002052.html"}, {"name": "cyboardsphplite-multiple-file-include(44475)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44475"}]}}}}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-3710", "datePublished": "2008-08-19T19:10:00", "dateReserved": "2008-08-19T00:00:00", "dateUpdated": "2017-08-07T12:57:01", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.0"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:hotscripts:cyboards_php_lite:1.21:*:*:*:*:*:*:*", "matchCriteriaId": "D7F729C1-C260-4FFA-9D2C-F62C40244910", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple directory traversal vulnerabilities in CyBoards PHP Lite 1.21 allow remote attackers to include and execute arbitrary local files via directory traversal sequences in the (1) script_path parameter to (a) options.php and the (2) lang_code parameter to (b) copy_vip.php and (c) process_edit_board.php in adminopts/. NOTE: some of these vectors might not be vulnerabilities under proper installation."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de salto de directorio CyBoards PHP Lite 1.21, permiten a atacantes remotos incluir y ejecutar archivos locales arbitrariamente mediante secuencias de salto de directorio en el par\u00e1metro (1) script_path de (a) options.php y el par\u00e1metro (2) lang_code en (b) copy_vip.php y (c) process_edit_board.php de adminopts/. NOTA: alguno de estos vectores podr\u00edan no considerarse vulnerabilidades con una instalaci\u00f3n adecuada."}], "evaluatorComment": "In order to exploit this vulnerability to execute arbitrary code, the attacker would first be required to upload a malicious file or inject arbitrary commands into an existing file and register_globals must be enabled.", "id": "CVE-2008-3710", "lastModified": "2017-08-08T01:32:06.200", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "HIGH", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 5.1, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 4.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2008-08-19T19:41:00.000", "references": [{"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://packetstormsecurity.org/0808-exploits/cyboards-rfilfixss.txt"}, {"source": "cve@mitre.org", "url": "http://www.attrition.org/pipermail/vim/2008-August/002052.html"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/30688"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/44475"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-22"}], "source": "nvd@nist.gov", "type": "Primary"}]}