CVE-2006-2319

NONECVSS 0.0

0.0

Ideal Science Ideal BB 1.5.4a and earlier does not properly check file extensions before permitting an upload, which allows remote attackers to upload and execute an ASP script via a 0x00 character before the ".asp" portion of the filename.

🔗 References (18)

cve@mitrehttp://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045887.html
cve@mitrehttp://secunia.com/advisories/20035
cve@mitrehttp://securityreason.com/securityalert/871
cve@mitrehttp://www.idealscience.com/ibb/posts.aspx?postID=24415
cve@mitrehttp://www.osvdb.org/25456
cve@mitrehttp://www.securityfocus.com/archive/1/433248/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/17920
cve@mitrehttp://www.vupen.com/english/advisories/2006/1729
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/26353
af854a3a-2127-422b-91ae-364da2661108http://lists.grok.org.uk/pipermail/full-disclosure/2006-May/045887.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/20035
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/871
af854a3a-2127-422b-91ae-364da2661108http://www.idealscience.com/ibb/posts.aspx?postID=24415
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/25456
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/433248/100/0/threaded

Is Your Infrastructure Affected by CVE-2006-2319?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2006-2319

📅 Published

🔄 Last Modified

🔗 References (18)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2006-2319?