National Cyber Awareness System

Vulnerability Summary for CVE-2009-1677

Overview

Multiple static code injection vulnerabilities in the saveFeed function in rss/feedcreator.class.php in Bitweaver 2.6 and earlier allow (1) remote authenticated users to inject arbitrary PHP code into files by placing PHP sequences into the account's "display name" setting and then invoking boards/boards_rss.php, and might allow (2) remote attackers to inject arbitrary PHP code into files via the HTTP Host header in a request to boards/boards_rss.php.

Impact

CVSS Severity (version 2.0):

CVSS Version 2 Metrics:

References to Advisories, Solutions, and Tools

By selecting these links, you will be leaving NIST webspace. We have provided these links to other web sites because they may have information that would be of interest to you. No inferences should be drawn on account of other sites being referenced, or not, from this page. There may be other web sites that are more appropriate for your purpose. NIST does not necessarily endorse the views expressed, or concur with the facts presented on these sites. Further, NIST does not endorse any commercial products that may be mentioned on these sites. Please address comments about this page to nvd@nist.gov.

External Source: XF

Name: bitweaver-savefeed-code-execution(50631)

Hyperlink:http://xforce.iss.net/xforce/xfdb/50631

External Source: BID

Name: 34910

Hyperlink:http://www.securityfocus.com/bid/34910

External Source: BUGTRAQ

Name: 20090512 Bitweaver <= 2.6 /boards/boards_rss.php / saveFeed() remote code execution exploit

Hyperlink:http://www.securityfocus.com/archive/1/503435

External Source: MILW0RM

Name: 8659

Hyperlink:http://www.milw0rm.com/exploits/8659

External Source: SECUNIA

Name: 35057

Type: Advisory

Hyperlink:http://secunia.com/advisories/35057