CVE-2005-3586

Description

content.php in Mambo 4.5.2 through 4.5.2.3 allows remote attackers to obtain the installation path of the application via a URL that causes the application to return an error.

Affected products

• Mambo / mambo4.5.2 – 4.5.2
• Mambo / mambo4.5.2.1 – 4.5.2.1
• Mambo / mambo4.5.2.2 – 4.5.2.2
• Mambo / mambo4.5.2.3 – 4.5.2.3

References

• MISChttp://irannetjob.com/content/view/153/28/
• MAILING_LISThttp://marc.info/?l=bugtraq&m=113106195532404&w=2