Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2945

Overview

Vulnerability Score 4.0 4.0
CVE Id CVE-2006-2945
Last Modified 10 Mar 2011 12:00:00
Published 12 Jun 2006 04:06:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2006-2945

Summary

Unspecified vulnerability in the user profile change functionality in DokuWiki, when Access Control Lists are enabled, allows remote authenticated users to read unauthorized files via unknown attack vectors.

Vulnerable Systems

Application

  • Andreas Gohr Dokuwiki Release 2004-07-04

  • Andreas Gohr Dokuwiki Release 2004-07-07

  • Andreas Gohr Dokuwiki Release 2004-07-12

  • Andreas Gohr Dokuwiki Release 2004-07-21

  • Andreas Gohr Dokuwiki Release 2004-07-25

  • Andreas Gohr Dokuwiki Release 2004-08-08

  • Andreas Gohr Dokuwiki Release 2004-08-15a

  • Andreas Gohr Dokuwiki Release 2004-08-22

  • Andreas Gohr Dokuwiki Release 2004-09-12

  • Andreas Gohr Dokuwiki Release 2004-09-25

  • Andreas Gohr Dokuwiki Release 2004-09-30

  • Andreas Gohr Dokuwiki Release 2004-10-19

  • Andreas Gohr Dokuwiki Release 2004-11-01

  • Andreas Gohr Dokuwiki Release 2004-11-02

  • Andreas Gohr Dokuwiki Release 2004-11-10

  • Andreas Gohr Dokuwiki Release 2005-01-14

  • Andreas Gohr Dokuwiki Release 2005-01-15

  • Andreas Gohr Dokuwiki Release 2005-01-16a

  • Andreas Gohr Dokuwiki Release 2005-02-06

  • Andreas Gohr Dokuwiki Release 2005-02-18

  • Andreas Gohr Dokuwiki Release 2005-05-07

  • Andreas Gohr Dokuwiki Release 2005-07-01

  • Andreas Gohr Dokuwiki Release 2005-07-13

  • Andreas Gohr Dokuwiki Release 2005-09-19

  • Andreas Gohr Dokuwiki Release 2005-09-22

  • Andreas Gohr Dokuwiki Release 2006-03-05

  • Andreas Gohr Dokuwiki Release 2006-03-09


References

SECUNIA - 20478

CONFIRM - http://bugs.splitbrain.org/?do=details&id=825

XF - dokuwiki-acl-bypass(27081)

VUPEN - ADV-2006-2172


Last Updated: 27 May 2016 10:42:50