CVE-2010-0755
published 2010-02-27CVE-2010-0755: PHP remote file inclusion vulnerability in include/WBmap.php in WikyBlog 1.7.3 rc2 allows remote attackers to execute arbitrary PHP code via a URL in the…
PriorityP347high7.5CVSS 2.0
AVNACLAuNCPIPAP
EXPLOIT
EPSS
2.47%
82.5th percentile
PHP remote file inclusion vulnerability in include/WBmap.php in WikyBlog 1.7.3 rc2 allows remote attackers to execute arbitrary PHP code via a URL in the langFile parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| wikyblog | wikyblog | — | — |
CVSS provenance
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
vendor_redhat4.6MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-vcw7-c2c6-j546: PHP remote file inclusion vulnerability in include/WBmap
ghsa_unreviewed·2022-05-02
CVE-2010-0755 [HIGH] CWE-94 GHSA-vcw7-c2c6-j546: PHP remote file inclusion vulnerability in include/WBmap
PHP remote file inclusion vulnerability in include/WBmap.php in WikyBlog 1.7.3 rc2 allows remote attackers to execute arbitrary PHP code via a URL in the langFile parameter.
Red Hat
kernel: Driver-Core: devtmpfs - set root directory mode to 0755
vendor_redhat·2009-10-30·CVSS 4.6
CVE-2010-0299 [MEDIUM] CWE-732 kernel: Driver-Core: devtmpfs - set root directory mode to 0755
kernel: Driver-Core: devtmpfs - set root directory mode to 0755
openSUSE 11.2 installs the devtmpfs root directory with insecure permissions (1777), which allows local users to gain privileges via unspecified vectors.
Statement: Not vulnerable. The Linux kernel as shipped with Red Hat Enterprise Linux 3, 4, 5 and Red Hat Enterprise MRG did not include support for Devtmpfs, and therefore are not affected by this issue.
Suricata
GPL FTP SITE overflow attempt
suricata·2010-09-23
CVE-1999-0838 GPL FTP SITE overflow attempt
GPL FTP SITE overflow attempt
Rule: alert ftp $EXTERNAL_NET any -> $HOME_NET any (msg:"GPL FTP SITE overflow attempt"; flow:established,to_server; content:"SITE"; nocase; isdataat:100,relative; pcre:"/^SITE\s[^\n]{100}/smi"; reference:cve,1999-0838; reference:cve,2001-0755; reference:cve,2001-0770; classtype:attempted-admin; sid:2101529; rev:13; metadata:created_at 2010_09_23, cve CVE_1999_0838, confidence Medium, signature_severity Major, tag Description_Generated_By_Proofpoint_Nexus, updated_at 2024_03_08;)
Bugzilla
CVE-2010-2023 exim: hard-link following vulnerability in mailbox handling
bugzilla·2010-06-03·CVSS 4.4
CVE-2010-2023 [MEDIUM] CVE-2010-2023 exim: hard-link following vulnerability in mailbox handling
CVE-2010-2023 exim: hard-link following vulnerability in mailbox handling
Dan Rosenberg reported that when exim is used with a world-writable mail directory, with the sticky-bit set, local users could create hard-links to other non-root users' files in the mailbox storage directory, causing files to be overwritten upon mail delivery. This could be used to create a denial of service condition or potentially escalate privileges to those of targeted users.
Further information is available from the upstream bug report [1] and this has been fixed upstream in exim 4.72 [2].
[1] http://bugs.exim.org/show_bug.cgi?id=988
[2] http://vcs.exim.org/viewvc/exim/exim-src/src/transports/appendfile.c?r1=1.24&r2=1.25
The /var/spool/mail directory on Red Hat Enterprise Linux and Fedora is mode 0755 and o
Bugzilla
CVE-2010-0299 kernel: Driver-Core: devtmpfs - set root directory mode to 0755
bugzilla·2010-01-26·CVSS 4.6
CVE-2010-0299 [MEDIUM] CVE-2010-0299 kernel: Driver-Core: devtmpfs - set root directory mode to 0755
CVE-2010-0299 kernel: Driver-Core: devtmpfs - set root directory mode to 0755
Description of problem:
devtmpfs - set root directory mode to 0755.
Devtmpfs lets the kernel create a tmpfs instance called devtmpfs very early at kernel initialization, before any driver-core device is registered. Every device with a major/minor will provide a device node in devtmpfs. Devtmpfs can be changed and altered by userspace at any time, and in any way needed - just like today's udev-mounted tmpfs.
Make sure the root directory permissions is 0755 instead of 1777.
This was introduced in v2.6.32-rc1 via commit 2b2af54a.
Upstream commit:
http://git.kernel.org/linus/f776c5ec4690b21b3668ad5956774a22c86f541a
http://git.kernel.org/linus/9329d1beaeed1a94f030c784dcec5ff973f402c4
Discussion:
The Linux kerne
http://osvdb.org/62647http://packetstormsecurity.org/1002-exploits/wikyblog-rfishellxss.txthttp://www.exploit-db.com/exploits/11560http://www.securityfocus.com/bid/38386https://exchange.xforce.ibmcloud.com/vulnerabilities/56519http://osvdb.org/62647http://packetstormsecurity.org/1002-exploits/wikyblog-rfishellxss.txthttp://www.exploit-db.com/exploits/11560http://www.securityfocus.com/bid/38386https://exchange.xforce.ibmcloud.com/vulnerabilities/56519
2010-02-27
Published