Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4206

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2005-4206
Last Modified 05 Sep 2008 04:56:17
Published 13 Dec 2005 06:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-4206

Summary

Blackboard Learning and Community Portal System in Academic Suite 6.3.1.424, 6.2.3.23, and other versions before 6 allows remote attackers to redirect users to other URLs and conduct phishing attacks via a modified url parameter to frameset.jsp, which loads the URL into a frame and causes it to appear to be part of a valid page.

Vulnerable Systems

Application

  • Blackboard Learning And Community Post Systems 6.2.3.23

  • Blackboard Learning And Community Post Systems 6.3.1.424


References

XF - academicsuite-frameset-crossdomain-loading(23558)

BID - 15814

OSVDB - 21618

MISC - http://www.ipomonis.com/advisories/Bb_6.zip

SECUNIA - 17991


Last Updated: 27 May 2016 10:41:12