What is the severity of CVE-2006-4675?

CVE-2006-4675 is classified as a high severity vulnerability due to its potential for remote code execution through unrestricted file uploads.

How do I fix CVE-2006-4675?

To fix CVE-2006-4675, you should upgrade DokuWiki to version 2006-03-09 or later, which addresses this vulnerability.

What versions of DokuWiki are affected by CVE-2006-4675?

CVE-2006-4675 affects all DokuWiki versions released before 2006-03-09.

What are the risks associated with CVE-2006-4675?

The primary risk associated with CVE-2006-4675 is that attackers can upload malicious executable files, potentially leading to complete server compromise.

How does CVE-2006-4675 exploit the DokuWiki software?

CVE-2006-4675 exploits DokuWiki by allowing unauthorized file uploads to the data/media directory, where malicious files can be executed.

Vulnerability/
CVE-2006-4675

high

7.5

CWE

NVD-CWE-Other

11/9/2006

7/8/2024

CVE-2006-4675

First published: Mon Sep 11 2006(Updated: )

Unrestricted file upload vulnerability in lib/exe/media.php in DokuWiki before 2006-03-09c allows remote attackers to upload executable files into the data/media folder via unspecified vectors.

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
DokuWiki	<=release_2006-03-09
DokuWiki	=release_2004-07-04
DokuWiki	=release_2004-07-07
DokuWiki	=release_2004-07-12
DokuWiki	=release_2004-07-21
DokuWiki	=release_2004-07-25
DokuWiki	=release_2004-08-08
DokuWiki	=release_2004-08-15a
DokuWiki	=release_2004-08-22
DokuWiki	=release_2004-09-12
DokuWiki	=release_2004-09-25
DokuWiki	=release_2004-09-30
DokuWiki	=release_2004-10-19
DokuWiki	=release_2004-11-01
DokuWiki	=release_2004-11-02
DokuWiki	=release_2004-11-10
DokuWiki	=release_2005-01-14
DokuWiki	=release_2005-01-15
DokuWiki	=release_2005-01-16a
DokuWiki	=release_2005-02-06
DokuWiki	=release_2005-02-18
DokuWiki	=release_2005-05-07
DokuWiki	=release_2005-07-01
DokuWiki	=release_2005-07-13
DokuWiki	=release_2005-09-19
DokuWiki	=release_2005-09-22
DokuWiki	=release_2006-03-05

Remedy

http://secunia.com/advisories/21819

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-4675?
CVE-2006-4675 is classified as a high severity vulnerability due to its potential for remote code execution through unrestricted file uploads.
How do I fix CVE-2006-4675?
To fix CVE-2006-4675, you should upgrade DokuWiki to version 2006-03-09 or later, which addresses this vulnerability.
What versions of DokuWiki are affected by CVE-2006-4675?
CVE-2006-4675 affects all DokuWiki versions released before 2006-03-09.
What are the risks associated with CVE-2006-4675?
The primary risk associated with CVE-2006-4675 is that attackers can upload malicious executable files, potentially leading to complete server compromise.
How does CVE-2006-4675 exploit the DokuWiki software?
CVE-2006-4675 exploits DokuWiki by allowing unauthorized file uploads to the data/media directory, where malicious files can be executed.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/last-modified-date
agent/weakness
agent/remedy
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
collector/nvd-historical
vendor/andreas gohr
canonical/dokuwiki
version/dokuwiki/release_2006-03-09
version/dokuwiki/release_2004-07-04
version/dokuwiki/release_2004-07-07
version/dokuwiki/release_2004-07-12
version/dokuwiki/release_2004-07-21
version/dokuwiki/release_2004-07-25
version/dokuwiki/release_2004-08-08
version/dokuwiki/release_2004-08-15a
version/dokuwiki/release_2004-08-22
version/dokuwiki/release_2004-09-12
version/dokuwiki/release_2004-09-25
version/dokuwiki/release_2004-09-30
version/dokuwiki/release_2004-10-19
version/dokuwiki/release_2004-11-01
version/dokuwiki/release_2004-11-02
version/dokuwiki/release_2004-11-10
version/dokuwiki/release_2005-01-14
version/dokuwiki/release_2005-01-15
version/dokuwiki/release_2005-01-16a
version/dokuwiki/release_2005-02-06
version/dokuwiki/release_2005-02-18
version/dokuwiki/release_2005-05-07
version/dokuwiki/release_2005-07-01
version/dokuwiki/release_2005-07-13
version/dokuwiki/release_2005-09-19
version/dokuwiki/release_2005-09-22
version/dokuwiki/release_2006-03-05

Frequently Asked Questions

What is the severity of CVE-2006-4675?
CVE-2006-4675 is classified as a high severity vulnerability due to its potential for remote code execution through unrestricted file uploads.
How do I fix CVE-2006-4675?
To fix CVE-2006-4675, you should upgrade DokuWiki to version 2006-03-09 or later, which addresses this vulnerability.
What versions of DokuWiki are affected by CVE-2006-4675?
CVE-2006-4675 affects all DokuWiki versions released before 2006-03-09.
What are the risks associated with CVE-2006-4675?
The primary risk associated with CVE-2006-4675 is that attackers can upload malicious executable files, potentially leading to complete server compromise.
How does CVE-2006-4675 exploit the DokuWiki software?
CVE-2006-4675 exploits DokuWiki by allowing unauthorized file uploads to the data/media directory, where malicious files can be executed.

CVE-2006-4675

Remedy

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2006-4675?

How do I fix CVE-2006-4675?

What versions of DokuWiki are affected by CVE-2006-4675?

What are the risks associated with CVE-2006-4675?

How does CVE-2006-4675 exploit the DokuWiki software?

Company

Resources

Contact

Frequently Asked Questions

What is the severity of CVE-2006-4675?

How do I fix CVE-2006-4675?

What versions of DokuWiki are affected by CVE-2006-4675?

What are the risks associated with CVE-2006-4675?

How does CVE-2006-4675 exploit the DokuWiki software?