CVE-2005-4015 Information

Description

PHP Web Statistik 1.4 does not rotate the log database or limit the size of the referer field which allows remote attackers to fill the log files via a large number of requests as demonstrated using pixel.php.

Reference

http://cert.uni-stuttgart.de/archive/bugtraq/2005/11/msg00325.html http://freewebstat.com/changelog-english.html http://securityreason.com/securityalert/214 http://www.ush.it/2005/11/19/php-web-statistik/ https://exchange.xforce.ibmcloud.com/vulnerabilities/23386