class.atkdateattribute.js.php in Achievo 0.7.0 through 0.9.1, except 0.8.2, allows remote attackers to execute arbitrary PHP code when the allow_url_fopen setting is enabled via a URL in the config_atkroot parameter that points to the code.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Achievo | Achievo | 0.7.0 (including) | 0.7.0 (including) |
| Achievo | Achievo | 0.7.1 (including) | 0.7.1 (including) |
| Achievo | Achievo | 0.7.2 (including) | 0.7.2 (including) |
| Achievo | Achievo | 0.7.3 (including) | 0.7.3 (including) |
| Achievo | Achievo | 0.8.0 (including) | 0.8.0 (including) |
| Achievo | Achievo | 0.8.0_rc1 (including) | 0.8.0_rc1 (including) |
| Achievo | Achievo | 0.8.0_rc2 (including) | 0.8.0_rc2 (including) |
| Achievo | Achievo | 0.8.1 (including) | 0.8.1 (including) |
| Achievo | Achievo | 0.9.0 (including) | 0.9.0 (including) |
| Achievo | Achievo | 0.9.1 (including) | 0.9.1 (including) |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-08/0235.html
- http://www.achievo.org/lists/2002/Aug/msg00092.html
- http://www.iss.net/security_center/static/9947.php
- http://www.securityfocus.com/bid/5552
- http://archives.neohapsis.com/archives/bugtraq/2002-08/0235.html
- http://www.achievo.org/lists/2002/Aug/msg00092.html
- http://www.iss.net/security_center/static/9947.php
- http://www.securityfocus.com/bid/5552