MyBB global.php 'KILL_GLOBAL' Overwrite SQL Injection

medium Nessus Plugin ID 21239

Synopsis

The remote web server hosts a PHP application that is affected by a global variable overwrite vulnerability.

Description

The version of MyBB installed on the remote host is affected by a global variable overwrite vulnerability due to a failure to properly initialize global variables in the global.php script. A remote, unauthenticated attacker can exploit this issue to overwrite global variables to launch a SQL injection attack against the application, as well as other attacks using GET or POST HTTP requests.

Solution

Upgrade to MyBB 1.1.1 or later.

See Also

https://www.securityfocus.com/archive/1/431061/30/0/threaded

https://community.mybb.com/showthread.php?tid=8232

Plugin Details

Severity: Medium

ID: 21239

File Name: mybb_global_vars_overwrite.nasl

Version: 1.19

Type: remote

Family: CGI abuses

Published: 4/17/2006

Updated: 6/5/2024

Configuration: Enable thorough checks

Supported Sensors: Nessus

Enable CGI Scanning: true

Risk Information

VPR

Risk Factor: Medium

Score: 4.2

CVSS v2

Risk Factor: Medium

Base Score: 5.8

Temporal Score: 4.8

Vector: CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:N

Vulnerability Information

CPE: cpe:/a:mybb:mybb

Required KB Items: www/PHP, installed_sw/MyBB

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 4/14/2006

Vulnerability Publication Date: 4/14/2006

Reference Information

CVE: CVE-2006-1912

BID: 17564