Intrusion Prevention

MyNewsGroups.Layersmenu.INC.PHP.Remote.File.Inclusion

Description

It indicates a possible exploit of a remote file inclusion vulnerability in /lib/tree/layersmenu.inc.php in the PHP Layers Menu package for MyNewsGroups, that may allow remote attackers to execute arbitrary PHP code via a URL in the myng_root parameter.

Affected Products

MyNewsGroups MyNewsGroups 0.6b

Impact

Compromise of affected system.

Recommended Actions

Currently we are not aware of any vendor-supplied patches for this issue.

CVE References

CVE-2006-3966