Signature Detail
Short Name |
HTTP:PHP:PHPMYNEWS-FILE-ACCESS |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
php phpsecure |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+ |
HTTP: PHPMyNewsLetter Unauthorized File Access
This signature detects attempts to exploit a known vulnerability in PHPMyNewsLetter. Attackers can send a maliciously crafted request to the customize.php script to gain access to any file. Attackers can use this information in planning future attacks.
Extended Description
Remote attackers could exploit this vulnerability to view files on an affected server, or execute arbitrary commands within the security context of the phpMyNewsLetter process.
References