CVE-2006-3836 Information

Description

Directory traversal vulnerability in index.php in UNIDOmedia Chameleon LE 1.203 and earlier and possibly Chameleon PRO allows remote attackers to read arbitrary files via the rmid parameter.

Reference

http://secunia.com/advisories/21156 http://securityreason.com/securityalert/1280 http://www.securityfocus.com/archive/1/440765/100/0/threaded http://www.securityfocus.com/bid/19107 http://www.vupen.com/english/advisories/2006/2948 https://exchange.xforce.ibmcloud.com/vulnerabilities/27898