Vulnerability Name:

CVE-2006-2762 (CCN-26748)

Assigned:2006-05-30
Published:2006-05-30
Updated:2018-10-18
Summary:PHP remote file inclusion vulnerability in includes/config.php in WebCalendar 1.0.3 allows remote attackers to execute arbitrary PHP code via a URL in the includedir parameter, which is remotely accessed in an fopen call whose results are used to define a user_inc setting that is used in an include_once call.
CVSS v3 Severity:6.5 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N)
5.7 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): None
CVSS v2 Severity:6.4 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
6.4 Medium (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): None
Vulnerability Type:CWE-Other
Vulnerability Consequences:Obtain Information
References:Source: CCN
Type: BugTraq Mailing List, Tue May 30 2006 - 13:31:12 CDT
WebCalendar-1.0.3 reading of any files

Source: MITRE
Type: CNA
CVE-2006-2762

Source: CCN
Type: SA20367
WebCalendar "includedir" Parameter Arbitrary Setting File Loading

Source: SECUNIA
Type: Vendor Advisory
20367

Source: SECUNIA
Type: UNKNOWN
20542

Source: SREASON
Type: UNKNOWN
1019

Source: CCN
Type: SECTRACK ID: 1016179
WebCalendar Include File Bug in `includes/config.php` Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1016179

Source: CCN
Type: WebCalendar Web site
Project: WebCalendar: Summary

Source: DEBIAN
Type: UNKNOWN
DSA-1096

Source: DEBIAN
Type: DSA-1096
webcalendar -- uninitialised variable

Source: OSVDB
Type: UNKNOWN
25842

Source: CCN
Type: OSVDB ID: 25842
WebCalendar index.php includedir Function Remote File Inclusion

Source: BUGTRAQ
Type: UNKNOWN
20060530 WebCalendar-1.0.3 reading of any files

Source: BUGTRAQ
Type: UNKNOWN
20060607 Re: WebCalendar-1.0.3 reading of any files

Source: BID
Type: UNKNOWN
18175

Source: CCN
Type: BID-18175
WebCalendar Index.PHP Information Disclosure Vulnerability

Source: VUPEN
Type: UNKNOWN
ADV-2006-2067

Source: XF
Type: UNKNOWN
webcalendar-config-information-disclosure(26748)

Vulnerable Configuration:Configuration 1:
  • cpe:/a:webcalendar:webcalendar:1.0.3:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:webcalendar:webcalendar:1.0.3:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.debian:def:1096
    V
    		uninitialised variable
    2006-06-13
    BACK
    webcalendar webcalendar 1.0.3
    webcalendar webcalendar 1.0.3