Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-3796

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-3796
Last Modified 05 Sep 2008 05:08:05
Published 24 Jul 2006 08:19:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-3796

Summary

DeluxeBB 1.07 and earlier does not properly handle a username composed of a single space character, which allows remote authenticated users to login as the "space" user, post as the guest user, and block the ability of an administrator to ban the "space" user.

Vulnerable Systems

Application

  • Deluxebb 1.07


References

BUGTRAQ - 20060718 DeluxeBB mutiple vulnerabilities

BID - 19052

SREASON - 1254

FULLDISC - 20060718 Advisory : DeluxeBB mutiple vulnerabilities


Last Updated: 27 May 2016 10:43:08