CVE-2005-3765 Information

Description

Exponent CMS 0.96.3 and later versions performs a chmod on uploaded files to give them execute permissions which allows remote attackers to execute arbitrary code.

Reference

http://secunia.com/advisories/17505 http://secunia.com/advisories/17655 http://www.securityfocus.com/archive/1/417218 http://www.securityfocus.com/bid/15503