Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0108

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0108
Last Modified 04 Nov 2008 12:23:03
Published 25 Mar 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0108

Summary

Allaire Forums 2.0.4 and 2.0.5 and Forums! 3.0 and 3.1 allows remote authenticated users to spoof messages as other users by modifying the hidden form fields for the name and e-mail address.

Vulnerable Systems

Application

  • Allaire Forums 2.0.4

  • Allaire Forums 2.0.5

  • Allaire Forums 3.0

  • Allaire Forums 3.1


References

CERT-VN - VU#575619

BID - 3827

XF - allaire-forums-message-spoofing(7841)

BUGTRAQ - 20020108 Allaire Forums Vulnerability


Last Updated: 27 May 2016 10:36:46