FreeBSD VuXML: Documenting security issues in FreeBSD and the FreeBSD Ports Collection

CVE-2007-1343

This CVE name corresponds to:

Entered Topic
2007-04-08 WebCalendar -- "noSet" variable overwrite vulnerability

The following information is adapted from the Common Vulnerabilities and Exposures (CVE) project. CVE and the CVE logo are trademarks of The MITRE Corporation. CVE content is Copyright 2005, The MITRE Corporation.

Details

Type Candidate
Name CVE-2007-1343
Phase Assigned(20070307)

Description

includes/functions.php in Craig Knudsen WebCalendar before 1.0.5 does not protect the noSet variable from external modification, which allows remote attackers to set arbitrary global variables via a URL with modified values in the noSet parameter, which leads to resultant vulnerabilities that probably include remote file inclusion and other issues.

References

Source Reference
MLIST [webcalendar-announce] 20070304 Announce: Release 1.0.5 (security patch)
CONFIRM http://sourceforge.net/project/shownotes.php?group_id=3870&release_id=491130
CONFIRM http://webcalendar.cvs.sourceforge.net/webcalendar/webcalendar/includes/functions.php?view=log
CONFIRM http://webcalendar.cvs.sourceforge.net/webcalendar/webcalendar/includes/functions.php?r1=1.211.2.7&r2=1.211.2.8
DEBIAN DSA-1267
BID 22834
VUPEN ADV-2007-0851
SECUNIA 24403
SECUNIA 24519
XF webcalendar-noset-variable-overwrite(32832)