2229.txt

来自「This is the snapshot of Snot Latest Rule」· 文本 代码 · 共 58 行

Rule:  

--
Sid:
2229

--
Summary:
This event is generated when an attempt is made to exploit a known 
vulnerability in the PHP application phpBB.

--
Impact:
Information disclosure possibly leading to serious system compromise.

--
Detailed Information:
Some versions of phpBB Group phpBB suffer from a vulnerability that 
allows an attacker to inject SQL queries of their choosing.

This can result in the disclosure of passwords and other information 
stored in the database. The data contained in the database may also be 
corrupted by a malicious SQL query.

--
Affected Systems:
	phpBB Group phpBB 2.0.4, 2.0.5

--
Attack Scenarios:
The attacker can execute one of the publicly available exploit scripts.
--
Ease of Attack:
Simple. Exploit code exists.

--
False Positives:
None known.

--
False Negatives:
None known.

--
Corrective Action:
Upgrade to the latest non-affected version of the software.

--
Contributors:
Sourcefire Vulnerability Research Team
Brian Caswell <bmc@sourcefire.com>
Nigel Houghton <nigel.houghton@sourcefire.com>

-- 
Additional References:

--