Intrusion Prevention

Lussumo.Vanilla.RootDirectory.Remote.File.Inclusion

Description

It indicates a possible exploit of a remote file inclusion vulnerability in Lussumo Vanilla that may allow remote attackers to execute arbitrary PHP code via a RootDirectory parameter.

Affected Products

Lussumo Vanilla 1.0.1
Lussumo Vanilla 1.0

Impact

Compromise of system

Recommended Actions

Further information reports that this issue cannot be exploited because the vulnerable parameter is defined with a hard-coded value.

CVE References

CVE-2006-3850