CVE

Id
19206  
CVE No.
CVE-2006-3102  
Status
Candidate  
Description
Race condition in articles/BitArticle.php in Bitweaver 1.3, when run on Apache with the mod_mime extension, allows remote attackers to execute arbitrary PHP code by uploading arbitrary files with double extensions, which are stored for a small period of time under the webroot in the temp/articles directory.  
Phase
Assigned (20060620)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
171510 19206 CVE-2006-3102 BUGTRAQ:20060617 bitweaver <= v1.3 multiple vulnerabilities  View
171511 19206 CVE-2006-3102 URL:http://www.securityfocus.com/archive/1/archive/1/437491/100/0/threaded  View
171512 19206 CVE-2006-3102 MILW0RM:1918  View
171513 19206 CVE-2006-3102 URL:http://www.milw0rm.com/exploits/1918  View
171514 19206 CVE-2006-3102 MISC:http://retrogod.altervista.org/bitweaver_13_xpl.html  View
171515 19206 CVE-2006-3102 CONFIRM:http://sourceforge.net/project/shownotes.php?release_id=336854&group_id=141358  View
171516 19206 CVE-2006-3102 CONFIRM:http://www.bitweaver.org/articles/45  View
171517 19206 CVE-2006-3102 VUPEN:ADV-2006-2405  View
171518 19206 CVE-2006-3102 URL:http://www.vupen.com/english/advisories/2006/2405  View
171519 19206 CVE-2006-3102 OSVDB:26587  View
171520 19206 CVE-2006-3102 URL:http://www.osvdb.org/26587  View
171521 19206 CVE-2006-3102 SECUNIA:20695  View
171522 19206 CVE-2006-3102 URL:http://secunia.com/advisories/20695  View
171523 19206 CVE-2006-3102 SREASON:1115  View
171524 19206 CVE-2006-3102 URL:http://securityreason.com/securityalert/1115  View
171525 19206 CVE-2006-3102 XF:bitweaver-modmime-file-upload(27215)  View

Related JVN