Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2064

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-2064
Last Modified 10 Aug 2009 12:00:00
Published 02 May 2008 07:20:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2064

Summary

Multiple unspecified vulnerabilities in PhpGedView before 4.1.5 have unknown impact and attack vectors related to "a fundamental design flaw in the interface (API) to connect phpGedView with external programs like content management systems."

Vulnerable Systems

Application

  • Phpgedview 0.6

  • Phpgedview 0.8

  • Phpgedview 0.95

  • Phpgedview 1.0

  • Phpgedview 1.04

  • Phpgedview 1.1

  • Phpgedview 2.0

  • Phpgedview 2.12

  • Phpgedview 2.13

  • Phpgedview 2.50

  • Phpgedview 2.60

  • Phpgedview 2.65

  • Phpgedview 3.0

  • Phpgedview 3.2

  • Phpgedview 3.3.8

  • Phpgedview 4.0

  • Phpgedview 4.1.1

  • Phpgedview 4.1.3

  • Phpgedview 4.1.4


References

CONFIRM - http://www.phpgedview.net/

DEBIAN - DSA-1580

CONFIRM - http://sourceforge.net/project/shownotes.php?group_id=55456&release_id=595222

XF - phpgedview-unspecified-code-execution(42085)

BID - 28978

SECUNIA - 30256

SECUNIA - 29989


Last Updated: 27 May 2016 10:47:44