CVE-2005-3961
CVSS5.0
发布时间 :2005-12-01 01:03:00
修订时间 :2011-03-10 00:00:00
NMCOS    

[原文]export_handler.php in WebCalendar 1.0.1 allows remote attackers to overwrite WebCalendar data files via a modified id parameter.


[CNNVD]WebCalendar多个远程SQL注入漏洞(CNNVD-200512-030)

        WebCalendar是一款基于WEB的日历系统。
        WebCalendar的activity_log.php和edit_report_handler.php模块没有正确的验证输入参数,导致了多个SQL注入漏洞。成功利用这些漏洞的攻击者可以完全入侵数据库系统。
        

- CVSS (基础分值)

CVSS分值: 5 [中等(MEDIUM)]
机密性影响: NONE [对系统的机密性无影响]
完整性影响: PARTIAL [可能会导致系统文件被修改]
可用性影响: NONE [对系统可用性无影响]
攻击复杂度: LOW [漏洞利用没有访问限制 ]
攻击向量: [--]
身份认证: NONE [漏洞利用无需身份认证]

- CPE (受影响的平台与产品)

产品及版本信息(CPE)暂不可用

- OVAL (用于检测的技术细节)

未找到相关OVAL定义

- 官方数据库链接

http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3961
(官方数据源) MITRE
http://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2005-3961
(官方数据源) NVD
http://www.cnnvd.org.cn/vulnerability/show/cv_cnnvdid/CNNVD-200512-030
(官方数据源) CNNVD

- 其它链接及资源

http://xforce.iss.net/xforce/xfdb/23370
(UNKNOWN)  XF  webcalendar-exporthandler-file-overwrite(23370)
http://www.vupen.com/english/advisories/2005/2643
(VENDOR_ADVISORY)  VUPEN  ADV-2005-2643
http://www.ush.it/2005/11/28/webcalendar-multiple-vulnerabilities
(VENDOR_ADVISORY)  MISC  http://www.ush.it/2005/11/28/webcalendar-multiple-vulnerabilities
http://www.securityfocus.com/bid/15608
(UNKNOWN)  BID  15608
http://www.securityfocus.com/archive/1/archive/1/417900/100/0/threaded
(VENDOR_ADVISORY)  BUGTRAQ  20051128 WebCalendar Multiple Vulnerabilities
http://www.osvdb.org/21220
(UNKNOWN)  OSVDB  21220
http://www.debian.org/security/2006/dsa-1002
(UNKNOWN)  DEBIAN  DSA-1002
http://sourceforge.net/forum/forum.php?thread_id=1392833&forum_id=11587
(UNKNOWN)  CONFIRM  http://sourceforge.net/forum/forum.php?thread_id=1392833&forum_id=11587
http://securityreason.com/securityalert/215
(UNKNOWN)  SREASON  215
http://secunia.com/advisories/19240
(VENDOR_ADVISORY)  SECUNIA  19240
http://secunia.com/advisories/17784
(VENDOR_ADVISORY)  SECUNIA  17784

- 漏洞信息

WebCalendar多个远程SQL注入漏洞
中危 输入验证
2005-12-01 00:00:00 2006-06-09 00:00:00
远程  
        WebCalendar是一款基于WEB的日历系统。
        WebCalendar的activity_log.php和edit_report_handler.php模块没有正确的验证输入参数,导致了多个SQL注入漏洞。成功利用这些漏洞的攻击者可以完全入侵数据库系统。
        

- 公告与补丁

        

- 漏洞信息

21220
WebCalendar export_handler.php Arbitrary Data File Overwrite
Remote / Network Access

- 漏洞描述

Unknown or Incomplete

- 时间线

2005-11-28 2005-11-28
Unknow Unknow

- 解决方案

Unknown or Incomplete

- 相关参考

- 漏洞作者

Unknown or Incomplete

- 漏洞信息

WebCalendar Export_Handler.PHP File Corruption Vulnerability
Input Validation Error 15608
Yes No
2005-11-28 12:00:00 2006-12-15 09:03:00
Francesco Ongaro is credited with the discovery of this vulnerability.

- 受影响的程序版本

k5n WebCalendar 1.0.1
Debian Linux 3.1 sparc
Debian Linux 3.1 s/390
Debian Linux 3.1 ppc
Debian Linux 3.1 mipsel
Debian Linux 3.1 mips
Debian Linux 3.1 m68k
Debian Linux 3.1 ia-64
Debian Linux 3.1 ia-32
Debian Linux 3.1 hppa
Debian Linux 3.1 arm
Debian Linux 3.1 amd64
Debian Linux 3.1 alpha
Debian Linux 3.1

- 漏洞讨论

WebCalendar is prone to a file-corruption vulnerability. This is due to a lack of proper validation of user-supplied input.

An attacker may leverage this issue to corrupt files with the privileges of an unsuspecting user running a vulnerable version of the affected application.

Version 1.0.1 is reported to be vulnerable; other versions may also be affected.

- 漏洞利用

No exploit is required.

- 解决方案


Please see the references for vendor advisories and more information.

Currently we are not aware of any vendor-supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com

- 相关参考

 

 

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站