Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-6319

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2007-6319
Last Modified 07 Mar 2011 10:02:25
Published 19 Feb 2008 05:44:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-6319

Summary

Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to (1) gain list administrator privileges or (2) access arbitrary mailing lists via unknown vectors related to modification of client-side information; and (3) allow remote authenticated administrators to modify other account data by creating "new accounts that collide with existing accounts."

Vulnerable Systems

Application

  • Lyris List Manager 8.95

  • Lyris List Manager 8.95a

  • Lyris List Manager 8.95b

  • Lyris List Manager 8.95c

  • Lyris List Manager 9.2

  • Lyris List Manager 9.2a

  • Lyris List Manager 9.2b

  • Lyris List Manager 9.3

  • Lyris List Manager 9.3a


References

BID - 26792

VUPEN - ADV-2008-0618

BUGTRAQ - 20080218 SYMSA-2008-001: Lyris ListManager - Multiple Vulnerabilities

SECTRACK - 1019436

SREASON - 3671

SECUNIA - 29019


Last Updated: 27 May 2016 10:46:28