CVE-2006-2405

Directory traversal vulnerability in unb_lib/abbc.conf.php in Unclassified NewsBoard (UNB) 1.6.1 patch 1 and earlier, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the ABBC[Config][smileset] parameter to unb_lib/abbc.css.php.

Published: May 16, 2006
Updated: Apr 13, 2023
CVE: CVE-2006-2405
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 6.8
AV:N/AC:M/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
unclassified_newsboard / unclassified_newsboard	1.5.3a	1.5.3a.x
unclassified_newsboard / unclassified_newsboard	-	1.6.1_patch1.x
unclassified_newsboard / unclassified_newsboard	1.5.3	1.5.3.x
unclassified_newsboard / unclassified_newsboard	1.5.3_patch3	1.5.3_patch3.x
unclassified_newsboard / unclassified_newsboard	1.6.1	1.6.1.x

http://newsboard.unclassified.de/forum/post/6499
http://retrogod.altervista.org/unb_161p1_incl_xpl.html
http://secunia.com/advisories/20090
http://securityreason.com/securityalert/899
http://www.osvdb.org/25494
http://www.securityfocus.com/archive/1/433686/100/0/threaded
http://www.securityfocus.com/bid/17947
http://www.vupen.com/english/advisories/2006/1782
https://exchange.xforce.ibmcloud.com/vulnerabilities/26507

Vulnerability Database

289,697

CVE-2006-2405