Vulnerability Description
The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier does not properly verify temporary filenames when editing textarea fields, which allows attackers to execute arbitrary commands via shell metacharacters in the filename.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Netrik | Netrik | <= 1.15.4 |
References
- http://netrik.cvs.sourceforge.net/netrik/netrik/form-file.c?r1=1.3&r2=1.4
- http://secunia.com/advisories/23822
- http://sourceforge.net/project/shownotes.php?release_id=472131&group_id=23183Patch
- http://www.debian.org/security/2007/dsa-1251
- http://www.securityfocus.com/bid/22158
- http://www.vupen.com/english/advisories/2006/5092
- http://netrik.cvs.sourceforge.net/netrik/netrik/form-file.c?r1=1.3&r2=1.4
- http://secunia.com/advisories/23822
- http://sourceforge.net/project/shownotes.php?release_id=472131&group_id=23183Patch
- http://www.debian.org/security/2007/dsa-1251
- http://www.securityfocus.com/bid/22158
- http://www.vupen.com/english/advisories/2006/5092
FAQ
What is CVE-2006-6678?
CVE-2006-6678 is a vulnerability with a CVSS score of 7.5 (HIGH). The edit_textarea function in form-file.c in Netrik 1.15.4 and earlier does not properly verify temporary filenames when editing textarea fields, which allows attackers to execute arbitrary commands v...
How severe is CVE-2006-6678?
CVE-2006-6678 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-6678?
Check the references section above for vendor advisories and patch information. Affected products include: Netrik Netrik.