CVE Vulnerabilities

CVE-2006-0147

Published: Jan 09, 2006 | Modified: Oct 19, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Dynamic code evaluation vulnerability in tests/tmssql.php test script in ADOdb for PHP before 4.70, as used in multiple products including (1) Mantis, (2) PostNuke, (3) Moodle, (4) Cacti, (5) Xaraya, (6) PhpOpenChat, possibly (7) MAXdev MD-Pro, and (8) Simplog, allows remote attackers to execute arbitrary PHP functions via the do parameter, which is saved in a variable that is then executed as a function, as demonstrated using phpinfo.

Affected Software

Name Vendor Start Version End Version
Adodb John_lim 4.66 (including) 4.66 (including)
Adodb John_lim 4.68 (including) 4.68 (including)
Mantis Mantis 0.19.4 (including) 0.19.4 (including)
Mantis Mantis 1.0.0_rc4 (including) 1.0.0_rc4 (including)
Moodle Moodle 1.5.3 (including) 1.5.3 (including)
Postnuke Postnuke_software_foundation 0.761 (including) 0.761 (including)
Cacti The_cacti_group 0.8.6g (including) 0.8.6g (including)
Libphp-adodb Ubuntu dapper *
Libphp-adodb Ubuntu devel *
Libphp-adodb Ubuntu edgy *
Libphp-adodb Ubuntu feisty *
Libphp-adodb Ubuntu gutsy *

References