CVE-2005-1580 Information

Description

users.ini.php in BoastMachine 3.0 does not properly restrict the types of files that can be uploaded which allows remote attackers to execute arbitrary code.

Reference

http://secunia.com/advisories/15312 http://www.kernelpanik.org/docs/kernelpanik/bmachines.txt http://www.osvdb.org/16334 http://www.securityfocus.com/bid/13600