CVE-2006-6175 | Vulnerability Database | Aqua Security

Directory traversal vulnerability in lib/FBView.php in Horde Kronolith H3 before 2.0.7 and 2.1.x before 2.1.4 allows remote attackers to include arbitrary files and execute PHP code via a .. (dot dot) sequence in the view parameter.

Affected Software

Name	Vendor	Start Version	End Version
Kronolith	Horde	2.0.1 (including)	2.0.1 (including)
Kronolith	Horde	2.0.2 (including)	2.0.2 (including)
Kronolith	Horde	2.0.3 (including)	2.0.3 (including)
Kronolith	Horde	2.0.4 (including)	2.0.4 (including)
Kronolith	Horde	2.0.5 (including)	2.0.5 (including)
Kronolith	Horde	2.0.6 (including)	2.0.6 (including)
Kronolith	Horde	2.1 (including)	2.1 (including)
Kronolith	Horde	2.1.1 (including)	2.1.1 (including)
Kronolith	Horde	2.1.2 (including)	2.1.2 (including)
Kronolith	Horde	2.1.3 (including)	2.1.3 (including)

References

http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=445
http://marc.info/?l=horde-announce\u0026m=116483107007152\u0026w=2
http://marc.info/?l=horde-announce\u0026m=116483121211579\u0026w=2
http://secunia.com/advisories/23145
http://secunia.com/advisories/23780
http://security.gentoo.org/glsa/glsa-200701-11.xml
http://securitytracker.com/id?1017316
http://www.securityfocus.com/bid/21341
http://www.vupen.com/english/advisories/2006/4775
http://labs.idefense.com/intelligence/vulnerabilities/display.php?id=445
http://marc.info/?l=horde-announce\u0026m=116483107007152\u0026w=2
http://marc.info/?l=horde-announce\u0026m=116483121211579\u0026w=2
http://secunia.com/advisories/23145
http://secunia.com/advisories/23780
http://security.gentoo.org/glsa/glsa-200701-11.xml
http://securitytracker.com/id?1017316
http://www.securityfocus.com/bid/21341
http://www.vupen.com/english/advisories/2006/4775

NVD	https://nvd.nist.gov/vuln/detail/CVE-2006-6175
CWE	https://cwe.mitre.org/data/definitions/NVD-Other.html