Signature Detail

Short Name	HTTP:PHP:PHP-CAL-FILE-INC
Severity	High
Recommended	No
Recommended Action	Drop
Category	HTTP
Keywords	PHP-Calendar File Include Vulnerability
Release Date	2005/03/30
Update Number	1213
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: PHP-Calendar File Include Vulnerability

This signature detects attempts to exploit a known vulnerability against PHP-Calendar, a popular open-source calendar program. Attackers can send malformed requests and execute arbitrary PHP commands on the web server.

Extended Description

A remote file include vulnerability affects PHP-Calendar. This issue is due to a failure of the application to properly sanitize user-supplied input prior to using it in a PHP 'include()' function call. An attacker may leverage this issue to execute arbitrary server-side script code on an affected computer with the privileges of the Web server process. This will facilitate unauthorized access.

Affected Products

PHP-Calendar 0.1.0
PHP-Calendar 0.10.0
PHP-Calendar 0.2.0
PHP-Calendar 0.3.0
PHP-Calendar 0.4.0
PHP-Calendar 0.5.0
PHP-Calendar 0.6.0
PHP-Calendar 0.7.0
PHP-Calendar 0.8.0
PHP-Calendar 0.9.0
PHP-Calendar 0.9.1

References

BugTraq: 12127
CVE: CVE-2004-1423
URL: http://www.gulftech.org/?node=research&article_id=00060-12292004
URL: http://php-calendar.sourceforge.net/
URL: http://www.securityspace.com/smysecure/catid.html?id=16071

Signature Detail

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

HTTP: PHP-Calendar File Include Vulnerability

Extended Description

Affected Products

References