Update Protection against ezDatabase Remote File Inclusion Vulnerability
| Check Point Reference: | CPAI-2006-026 | |
| Date Published: | ||
| Severity: | ||
| Last Updated: | ||
| Source: | SecurityFocus | |
| Industry Reference(s): | CVE-2006-0214 | |
| Protection Provided by: |
VPN-1
|
|
| Who is Vulnerable? ezDatabase 2.0 and earlier versions | ||
| Vulnerability Description ezDatabase is a Web based application designed for creating online databases. A vulnerability in ezDatabase allows remote attackers to execute arbitrary PHP code via several parameters. Attackers may be able to disclose sensitive information and compromise an affected system. |
||
|
Update/Patch Available Update to version 2.1.3 at http://www.ezdatabase.org/member/index.php. |
|
|
Vulnerability Details The vulnerability is specifically due to failure to verify input passed to the "db_id" parameter in "visitorupload.php" before it is being used in "eval()". This can be exploited to execute arbitrary PHP commands. |
Protection Overview
The Update enables the HTTP Worm Catcher to detect and block the vulnerability based on pre-defined worm signatures.
To configure the defense, select your product from the list below and follow the related protection steps.
Additional Information
The update also includes the following protections:
- Enhancement to the Microsoft Windows Media Player Vulnerability (CPAI-2006-016)
- Trojan Spy Goldun.de Protection (CPAI-2006-025)
- TFTPD32 Request Error Message Format String Protection (CPAI-2006-027) - InterSpect NGX only
- Cisco IOS CDP Status Page Code Injection Protection (CPAI-2006-028)
- SHOUTcast Filename Request Format String Protection (CPAI-2006-029)
- Oracle Report File Overwrite/Oracle Report Directory Traversal Protection (CPAI-2006-030)
- Google Talk via Gmail Web Interface Protection (CPSA-2006-02)
- IBM Tivoli Access Manager Directory Traversal Protection (CPAI-2006-031)
- Protection Against NFS Vulnerabilities (CPAI-2006-032)
- Protection against PmWiki multiple vulnerabilities.