JSBoard < 2.0.10 session.php Arbitrary File Access (deprecated)

medium Nessus Network Monitor Plugin ID 2549

Synopsis

The remote host is vulnerable to a flaw that allows attackers to retrieve sensitive files or data.

Description

The remote host appears to be running Ikonboard, a bulletin board service implemented in Perl. This version is reported to be vulnerable to a file disclosure flaw within the session.php file. Specifically, when the server is configured with PHP 'magic_quotes_gpc' disabled, a remote attacker can use session.php to read any file on the web server that is readable by the web process owner.

Solution

Upgrade to version 2.0.10 or higher.

Plugin Details

Severity: Medium

ID: 2549

Family: CGI

Published: 1/24/2005

Updated: 3/6/2019

Risk Information

VPR

Risk Factor: Low

Score: 3.6

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 4.4

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

CVSS v3

Risk Factor: Medium

Base Score: 5.3

Temporal Score: 5.1

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Temporal Vector: CVSS:3.0/E:H/RL:O/RC:C

Reference Information

CVE: CVE-2005-0300

BID: 12319