CVE-2006-3336

{"id": "CVE-2006-3336", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:H/Au:N/C:P/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "HIGH", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 4.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 4.9, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2006-07-05T20:05:00.000", "references": [{"url": "http://secunia.com/advisories/20992", "tags": ["Patch", "Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://securitytracker.com/id?1016458", "tags": ["Exploit", "Patch"], "source": "cve@mitre.org"}, {"url": "http://twiki.org/cgi-bin/view/Codev/SecurityAlertSecureFileUploads", "tags": ["Patch"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/18854", "source": "cve@mitre.org"}, {"url": "http://www.vupen.com/english/advisories/2006/2677", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/20992", "tags": ["Patch", "Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://securitytracker.com/id?1016458", "tags": ["Exploit", "Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://twiki.org/cgi-bin/view/Codev/SecurityAlertSecureFileUploads", "tags": ["Patch"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/18854", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.vupen.com/english/advisories/2006/2677", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Deferred", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "TWiki 01-Dec-2000 up to 4.0.3 allows remote attackers to bypass the upload filter and execute arbitrary code via filenames with double extensions such as \".php.en\", \".php.1\", and other allowed extensions that are not .txt. NOTE: this is only a vulnerability when the server allows script execution in the pub directory."}, {"lang": "es", "value": "Vulnerabilidad en TWiki desde la versi\u00f3n del 01-Dic-2000 hasta la versi\u00f3n v4.0.3 que permite a atacantes remotos saltarse el \"upload filter\" (filtro o control de subida) y ejecutar c\u00f3digo de su elecci\u00f3n a traves de nombres de ficheros con dos extensiones como \".php.en\", \".php.1\" y otras extensiones disponibles que no son .txt. NOTA: para que se produzca esta vulnerabilidad el servidor debe permiter la ejecuci\u00f3n de scripts en un directorio p\u00fablico."}], "lastModified": "2025-04-03T01:03:51.193", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:twiki:twiki:4.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "A0E0A8F3-02EE-4A6D-BAAC-1D52DF063197"}, {"criteria": "cpe:2.3:a:twiki:twiki:4.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "F893E121-82FA-41C8-9BA4-606E6DA01408"}, {"criteria": "cpe:2.3:a:twiki:twiki:4.0.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "47807C3A-8430-48E3-A7C8-C5A1FEDF84C0"}, {"criteria": "cpe:2.3:a:twiki:twiki:4.0.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "620356EA-F106-41DF-AADA-C1EF5A5A0829"}, {"criteria": "cpe:2.3:a:twiki:twiki:4.0.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "979D8BC8-0032-496F-9503-F3BBBC8FA7CF"}, {"criteria": "cpe:2.3:a:twiki:twiki:2000-12-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "89599BC3-E1D8-4670-9321-F63A788096A0"}, {"criteria": "cpe:2.3:a:twiki:twiki:2001-09-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "354C8BA8-603D-4556-8C4C-39DEE4891719"}, {"criteria": "cpe:2.3:a:twiki:twiki:2001-12-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "23CC3B43-A77A-471E-A0ED-E91E53C2400C"}, {"criteria": "cpe:2.3:a:twiki:twiki:2003-02-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "374ADC0F-0EE2-4DEC-8A37-5F5F15C8137A"}, {"criteria": "cpe:2.3:a:twiki:twiki:2004-09-01:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "BEC5965A-BFC8-42B3-AF13-28E097381E84"}, {"criteria": "cpe:2.3:a:twiki:twiki:2004-09-02:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C94AFFF9-5951-43A9-8018-B10C3F097CE9"}, {"criteria": "cpe:2.3:a:twiki:twiki:2004-09-03:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F823DF7-B38E-4FBF-8D9A-C1B49FC237BE"}, {"criteria": "cpe:2.3:a:twiki:twiki:2004-09-04:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FFA8E461-0CAA-4B44-8BCC-21CD8E1A6A41"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}