CGI abuses : Mambo Tar.php arbitrary code execution

Vulnerability Search		Search 324607 CVE descriptions and 146377 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 1.3.6.1.4.1.25623.1.0.51739

Category: CGI abuses

Title: Mambo Tar.php arbitrary code execution

Summary: NOSUMMARY

Description: Description:

The remote host is running Mambo version 4.5.2 or
earlier. These versions are subject to vulnerabilities
which allow arbitrary code injection as well as arbitrary
file disclosure, allowing malicious users to gain a shell
or read files such as your password file.

Solution: Upgrade to version 4.5.2.1 via an upgrade to
4.5.2 + application of the security patch for 4.5.2.1

Risk factor : High

Cross-Ref: BugTraq ID: 12608

Copyright Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

This is only one of 146377 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	1.3.6.1.4.1.25623.1.0.51739
Category:	CGI abuses
Title:	Mambo Tar.php arbitrary code execution
Summary:	NOSUMMARY
Description:	Description: The remote host is running Mambo version 4.5.2 or earlier. These versions are subject to vulnerabilities which allow arbitrary code injection as well as arbitrary file disclosure, allowing malicious users to gain a shell or read files such as your password file. Solution: Upgrade to version 4.5.2.1 via an upgrade to 4.5.2 + application of the security patch for 4.5.2.1 Risk factor : High
Cross-Ref:	BugTraq ID: 12608
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com