TMS zl Module IPS/IDS Signature Reference Guide RLX.10.2.2.94
ProCurve TMS zl Module IPS/IDS Signature
Reference Guide Version RLX.10.2.2.94
257
Signature Description: Phorum is a freely available, open source, popular WWW Board written by Brian Moon.A
problem with the package allows users access to any resources within the bulletin board system. Any file that is access
controlled by the auth.php3 script may be accessed, due to a backdoor password written into the script auth.php3. The
password "boogieman" will permit users to access files controlled by auth.php3 by simply appending the variable
PHP_AUTH_USER=boogieman to the URL. This makes it possible for users with malicious intentions to access any
file under the access control of auth.php3, and potentially gain elevated privileges, including access to the local system.
Phorum 3.0.7 is a Vulnerable version. Upgrade the latest version of Phorum 3.2.11, available at vendor's website.
Signature ID: 1874
WEB-PHP Phorum code access Vulnerability
Threat Level: Information
Industry ID: CVE-2000-1231
Signature Description: Phorum is an open source message board system written in PHP. The package is designed to
add enhanced features to a web page, allowing users to interact through bulletin board style chats forums. code.php3
script of Phorum (Phorum version 3.0.7) can be used to display contents of files located in the directory and contain
sensitive information. A remote attacker can use this vulnerability script to read arbitrary files in the phorum directory
via the query string. Upgrade the latest version of Phorum(3.0.8 or later), available at vendor's website.
Signature ID: 1875
WEB-PHP Phorum read access Vulnerability
Threat Level: Information
Industry ID: CVE-2000-1233
Signature Description: Phorum is an open source message board system written in PHP. The package is designed to
add enhanced features to a web page, allowing users to interact through bulletin board style chats forums. Phorum
(Phorum version 3.0.7) is a SQLinjection vulnerability. By sending a specially-crafted SQL statements to the read.php3
script, a remote attacker could use this vulnerability to add, modify, or delete information in the back-end database.
Upgrade the latest version of Phorum(3.2.11 or later), available at vendor's website.
Signature ID: 1876
WEB-PHP Phorum violation access Vulnerability
Threat Level: Information
Industry ID: CVE-2000-1234
Bugtraq: 2272
Signature Description: Phorum is an open source message board system written in PHP. The package is designed to
add enhanced features to a web page, allowing users to interact through bulletin board style chats forums. Phorum
(Phorum version 3.0.7) allow remote users to arbitrarily relay email. A remote attacker could create a specially-crafted
URL request to the violation.php3 script using ForumName and Mod variable, an attacker could use this vulnerability
to send e-mails to arbitrary address. Upgrade the latest version of Phorum(3.2.11), available at vendor's website.
Signature ID: 1877
WEB-PHP Photopost PHP Pro showphoto.php access Vulnerability
Threat Level: Information
Industry ID: CVE-2004-0239 CVE-2004-0250 Bugtraq: 9557
Signature Description: PhotoPost is photo sharing gallery software. It is written in PHP. PhotoPost PHP Pro(PhotoPost
PHP Pro version 4.6 and prior) is vulnerable to SQL injection, caused by input validation vulnerability. A remote
attacker could exploit this vulnerability by passing malicious SQL commands to Showphoto.php script using 'photo'
variable, which would allow the attacker to obtain sensitive information to possible add, modify, or delete information
in the backend database.