CVE-2007-3586 - Vulnerability Details - OpenCVE

Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and earlier allow remote attackers to inject arbitrary PHP code into (1) a _score.txt file via the score parameter, or (2) a _setby.txt file via a login cookie, which is then included by games.php. NOTE: programs that use games.php might include (a) snakep.php, (b) tetrisp.php, and possibly other site-specific files.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact Partial

Availability Impact Partial

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Mycms	Mycms

Configuration 1 [-]

cpe:2.3:a:mycms:mycms:*:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://osvdb.org/45778
http://www.securityfocus.com/bid/24757
https://exchange.xforce.ibmcloud.com/vulnerabilities/35254
https://www.exploit-db.com/exploits/4144

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2007-07-05T20:00:00

Updated: 2024-08-07T14:21:36.408Z

Reserved: 2007-07-05T00:00:00

Link: CVE-2007-3586

Vulnrichment

No data.

NVD

Status : Modified

Published: 2007-07-05T20:30:00.000

Modified: 2024-11-21T00:33:35.770

Link: CVE-2007-3586

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2007-07-03T00:00:00", "descriptions": [{"lang": "en", "value": "Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and earlier allow remote attackers to inject arbitrary PHP code into (1) a _score.txt file via the score parameter, or (2) a _setby.txt file via a login cookie, which is then included by games.php. NOTE: programs that use games.php might include (a) snakep.php, (b) tetrisp.php, and possibly other site-specific files."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-09-28T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "mycms-settings-games-command-execution(35254)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35254"}, {"name": "45778", "tags": ["vdb-entry", "x_refsource_OSVDB"], "url": "http://osvdb.org/45778"}, {"name": "4144", "tags": ["exploit", "x_refsource_EXPLOIT-DB"], "url": "https://www.exploit-db.com/exploits/4144"}, {"name": "24757", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/24757"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2007-3586", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and earlier allow remote attackers to inject arbitrary PHP code into (1) a _score.txt file via the score parameter, or (2) a _setby.txt file via a login cookie, which is then included by games.php. NOTE: programs that use games.php might include (a) snakep.php, (b) tetrisp.php, and possibly other site-specific files."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "mycms-settings-games-command-execution(35254)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35254"}, {"name": "45778", "refsource": "OSVDB", "url": "http://osvdb.org/45778"}, {"name": "4144", "refsource": "EXPLOIT-DB", "url": "https://www.exploit-db.com/exploits/4144"}, {"name": "24757", "refsource": "BID", "url": "http://www.securityfocus.com/bid/24757"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T14:21:36.408Z"}, "title": "CVE Program Container", "references": [{"name": "mycms-settings-games-command-execution(35254)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35254"}, {"name": "45778", "tags": ["vdb-entry", "x_refsource_OSVDB", "x_transferred"], "url": "http://osvdb.org/45778"}, {"name": "4144", "tags": ["exploit", "x_refsource_EXPLOIT-DB", "x_transferred"], "url": "https://www.exploit-db.com/exploits/4144"}, {"name": "24757", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/24757"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2007-3586", "datePublished": "2007-07-05T20:00:00", "dateReserved": "2007-07-05T00:00:00", "dateUpdated": "2024-08-07T14:21:36.408Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:mycms:mycms:*:*:*:*:*:*:*:*", "matchCriteriaId": "8B9FF7B1-2B9C-429B-A419-FC9D4D9EB4BF", "versionEndIncluding": "0.9.8", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "Multiple direct static code injection vulnerabilities in MyCMS 0.9.8 and earlier allow remote attackers to inject arbitrary PHP code into (1) a _score.txt file via the score parameter, or (2) a _setby.txt file via a login cookie, which is then included by games.php. NOTE: programs that use games.php might include (a) snakep.php, (b) tetrisp.php, and possibly other site-specific files."}, {"lang": "es", "value": "M\u00faltiples vulnerabilidades de inyecci\u00f3n directa de c\u00f3digo est\u00e1tico en MyCMS versi\u00f3n 0.9.8 y anteriores, permite a atacantes remotos inyectar c\u00f3digo PHP arbitrario en (1) un archivo _score.txt por medio del par\u00e1metro score, o (2) un archivo _setby.txt por medio de una cookie de inicio de sesi\u00f3n, que luego es incluida por el archivo games.php. NOTA: los programas que usan el archivo games.php podr\u00edan incluir los archivos (a) snakep.php, (b) tetrisp.php, y posiblemente otros archivos espec\u00edficos del sitio."}], "id": "CVE-2007-3586", "lastModified": "2024-11-21T00:33:35.770", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 7.5, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2007-07-05T20:30:00.000", "references": [{"source": "cve@mitre.org", "url": "http://osvdb.org/45778"}, {"source": "cve@mitre.org", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/24757"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35254"}, {"source": "cve@mitre.org", "url": "https://www.exploit-db.com/exploits/4144"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://osvdb.org/45778"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Exploit"], "url": "http://www.securityfocus.com/bid/24757"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/35254"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://www.exploit-db.com/exploits/4144"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-94"}], "source": "nvd@nist.gov", "type": "Primary"}]}