← back
CVE-2006-2406

CVE-2006-2406

EPSS 2.3%
Directory traversal vulnerability in bb_lib/abbc.css.php in Unclassified NewsBoard (UNB) 1.5.3-d and possibly earlier versions, when register_globals is enabled, allows remote attackers to include arbitrary files via .. (dot dot) sequences and a trailing null byte (%00) in the design_path parameter. NOTE: this is closely related, but a different vulnerability than the ABBC[Config][smileset] parameter.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/1777unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://attrition.org/pipermail/vim/2006-May/000769.htmlhttp://newsboard.unclassified.de/forum/post/6499http://www.osvdb.org/25494