HTTP: Claroline Import.lib.PHP Remote File Inclusion
This signature detects attempts to exploit a known vulnerability against Claroline. A successful attack can lead to arbitrary code execution.
Extended Description
Claroline is prone to a remote file-include vulnerability because it fails to sufficiently sanitize user-supplied input data. An attacker can exploit this issue to have malicious PHP code execute in the context of the webserver process. This may allow the attacker to compromise the application and the underlying system; other attacks are also possible. Version 1.8.0 rc1 is affected by this issue; other versions may also be affected.
Affected Products
Claroline claroline
References
BugTraq: 20444
CVE: CVE-2006-5256
URL: http://www.frsirt.com/english/advisories/2006/3996 http://www.milw0rm.com/exploits/2510
Short Name
HTTP:PHP:CLAROLINE-INCLUDE
Severity
Major
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2006-5256 Claroline File Import.lib.PHP Inclusion Remote bid:20444
Release Date
01/17/2007
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3336
False Positive
Unknown
Vendors
Claroline
CVSS Score
7.5