Intrusion Prevention

Simple.Machines.Forum.PHP.Injection

Description

This indicates an attempt to exploit one of several PHP code Injection vulnerabilities in Simple Machines Forum.
The vulnerabilities are caused by an error that occurs when the vulnerable software handles a malicious HTTP request. They allow a remote attacker to execute arbitrary PHP code by sending a crafted request.

Affected Products

Simple Machines Forum 1.1.2 and prior.

Impact

System compromise: remote code execution.

Recommended Actions

Upgrade to the latest version, available from the web site.
http://www.simplemachines.org/

CVE References

CVE-2007-3309