php icalendar vulnerability

Published: 2006-03-21
Last Updated: 2006-03-21 23:53:28 UTC
by Pedro Bueno (Version: 1)
0 comment(s)
---------------------------
Update2:

George from TenableSecurity wrote two nessus plugins that checks for the vulnerabilities:

http://www.nessus.org/plugins/index.php?view=single&id=21083
http://www.nessus.org/plugins/index.php?view=single&id=21091

Both are available currently for those with direct plugin feeds and will become available in 3 days for those with registered feeds.

---------------------------
Update:
According to the exploit for one of the vulnerabilities, it will only work if  phpicalendar_publishing is set to 1 in config.inc.php, so, for now if you have this parameter set to 0, you may be safe.
echo "this works if \"phpicalendar_publishing\" is set to 1 in config.inc.php\r\n\r\n";

I didnt verify this yet, so you can expect another update on this...
---------------------------
Yes, another vulnerability on another php application that can lead to another php worm style...
This time the affected application is the php icalendar, according to a security advisory at Frsirt , and even worst, there are already two exploits available for it, and, no vendor patch yet...
My personal recommendation, if you use Php icalendar or any other app is to keep it current, and in this particular case, if possible, remove it until a patch/new version is available...

-------------------------------------------------------------------
Handler on Duty: Pedro Bueno ( pbueno //&&//  isc. sans. org )
Keywords:
0 comment(s)

Comments


Diary Archives