CVE-2008-0300
published 2008-03-11CVE-2008-0300: mapFiler.php in Mapbender 2.4 to 2.4.4 allows remote attackers to execute arbitrary PHP code via PHP code sequences in the factor parameter, which are not…
PriorityP342medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
1.99%
78.2th percentile
mapFiler.php in Mapbender 2.4 to 2.4.4 allows remote attackers to execute arbitrary PHP code via PHP code sequences in the factor parameter, which are not properly handled when accessing a filename that contains those sequences.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| mapbender | mapbender | — | — |
| mapbender | mapbender | — | — |
| mapbender | mapbender | — | — |
| mapbender | mapbender | — | — |
| mapbender | mapbender | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Apple iCal 3.0.1 - 'COUNT' Integer Overflow
exploitdb·2008-04-21
CVE-2008-2006 Apple iCal 3.0.1 - 'COUNT' Integer Overflow
Apple iCal 3.0.1 - 'COUNT' Integer Overflow
---
source: https://www.securityfocus.com/bid/28629/info
Apple iCal is prone to an integer-overflow vulnerability because it fails to ensure that integer values aren't overrun.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects iCal 3.0.1 running on Mac OS X 10.5.1; previous versions may also be affected.
BEGIN:VCALENDAR
X-WR-TIMEZONE:America/Buenos_Aires
PRODID:-//Apple Inc.//iCal 3.0//EN
CALSCALE:GREGORIAN
X-WR-CALNAME: Vulnerable
VERSION:2.0
X-WR-RELCALID:10DE4203-4FA5-4E23-AE4D-9DAE3157C9E5
METHOD:PUBLISH
BEGIN:VTIMEZONE
TZID:America/Buenos_Aires
BEGIN:DAYLIGHT
TZOFFSETFROM:-0300
TZOFFSETTO:-
Exploit-DB
Apple iCal 3.0.1 - 'TRIGGER' Denial of Service
exploitdb·2008-04-21
CVE-2008-2006 Apple iCal 3.0.1 - 'TRIGGER' Denial of Service
Apple iCal 3.0.1 - 'TRIGGER' Denial of Service
---
source: https://www.securityfocus.com/bid/28632/info
Apple iCal is prone to a denial-of-service vulnerability because it fails to handle specially crafted files.
An attacker can exploit this issue to crash the affected application, denying service to legitimate users.
This issue affects iCal 3.0.1 running on Mac OS X 10.5.1; previous versions may also be affected.
BEGIN:VCALENDAR
X-WR-CALNAME:Fake event
PRODID:-//Apple Inc.//iCal 3.0//EN
CALSCALE:GREGORIAN
VERSION:2.0
METHOD:PUBLISH
BEGIN:VTIMEZONE
TZID:America/Buenos_Aires
BEGIN:DAYLIGHT
TZOFFSETFROM:-0300
TZOFFSETTO:-0300
DTSTART:19991003T000000
RDATE:19991003T000000
TZNAME:ARST
END:DAYLIGHT
BEGIN:STANDARD
TZOFFSETFROM:-0300
TZOFFSETTO:-0300
DTSTART:20000303T000000
RDATE:20000303T0
Exploit-DB
Apple iCal 3.0.1 - 'ATTACH' Denial of Service
exploitdb·2008-04-21
CVE-2008-1035 Apple iCal 3.0.1 - 'ATTACH' Denial of Service
Apple iCal 3.0.1 - 'ATTACH' Denial of Service
---
source: https://www.securityfocus.com/bid/28633/info
Apple iCal is prone to a denial-of-service vulnerability because it fails to adequately sanitize user-supplied input data.
Successful exploits will crash the application. Given the nature of this issue, attackers may also be able to run arbitrary code, but this has not been confirmed.
iCal 3.0.1 is vulnerable; other versions may also be affected.
/-----------
BEGIN:VCALENDAR
X-WR-TIMEZONE:America/Buenos_Aires
PRODID:-//Apple Inc.//iCal 3.0//EN
CALSCALE:GREGORIAN
X-WR-CALNAME:evento falso
VERSION:2.0
X-WR-RELCALID:71CE8EAD-380B-4EA3-A123-60F9B2A03990
METHOD:PUBLISH
BEGIN:VTIMEZONE
TZID:America/Buenos_Aires
BEGIN:DAYLIGHT
TZOFFSETFROM:-0300
TZOFFSETTO:-0300
DTSTART:19991003T000000
RD
Exploit-DB
Mapbender 2.4.4 - 'mapFiler.php' Remote Code Execution
exploitdb·2008-03-11·CVSS 6.8
CVE-2008-0300 [MEDIUM] Mapbender 2.4.4 - 'mapFiler.php' Remote Code Execution
Mapbender 2.4.4 - 'mapFiler.php' Remote Code Execution
---
Advisory: Remote Command Execution in Mapbender
During a penetration test RedTeam Pentesting discovered a remote command
execution vulnerability in Mapbender. An unauthorized user can create
arbitrary PHP-files on the Mapbender webserver, which can later be
executed.
Details
Product: Mapbender
Affected Versions: 2.4 - 2.4.4 (verified), probably older versions, too
Fixed Versions: 2.4.5rc1
Vulnerability Type: Remote Command Execution
Security-Risk: high
Vendor-URL: http://www.mapbender.org
Vendor-Status: informed, fixed version released
Advisory-URL: http://www.redteam-pentesting.de/advisories/rt-sa-2008-001.php
Advisory-Status: public
CVE: CVE-2008-0300
CVE-URL: http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-0300
In
No writeups or analysis indexed.
http://secunia.com/advisories/29329http://www.redteam-pentesting.de/advisories/rt-sa-2008-001.phphttp://www.securityfocus.com/bid/28195https://exchange.xforce.ibmcloud.com/vulnerabilities/41131https://www.exploit-db.com/exploits/5232http://secunia.com/advisories/29329http://www.redteam-pentesting.de/advisories/rt-sa-2008-001.phphttp://www.securityfocus.com/bid/28195https://exchange.xforce.ibmcloud.com/vulnerabilities/41131https://www.exploit-db.com/exploits/5232
2008-03-11
Published