Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-0135

Overview

Vulnerability Score 2.1 2.1
CVE Id CVE-2001-0135
Last Modified 05 Sep 2008 04:23:21
Published 12 Mar 2001 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector LOCAL
Access Complexity LOW
Authentication NONE

CVE-2001-0135

Summary

The default installation of Ultraboard 2000 2.11 creates the Skins, Database, and Backups directories with world-writeable permissions, which could allow local users to modify sensitive information or possibly insert and execute CGI programs.

Vulnerable Systems

Application

  • Ultrascripts Ultraboard 2.11


References

BID - 2197

BUGTRAQ - 20010112 UltraBoard cgi directory permission problem


Last Updated: 27 May 2016 10:36:08