Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2275

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2275
Last Modified 05 Sep 2008 05:39:58
Published 16 May 2008 08:54:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2275

Summary

Unspecified vulnerability in sr_feuser_register 1.4.0, 1.6.0, 2.2.1 to 2.2.7, 2.3.0 to 2.3.6, 2.4.0, and 2.5.0 to 2.5.9 extension for TYPO3 allows remote attackers to execute arbitrary code and delete arbitrary files via unspecified attack vectors.

Vulnerable Systems

Application

  • Typo3 Sr Feuser Register Extension 1.4.0

  • Typo3 Sr Feuser Register Extension 1.6.0

  • Typo3 Sr Feuser Register Extension 2.2.1

  • Typo3 Sr Feuser Register Extension 2.2.2

  • Typo3 Sr Feuser Register Extension 2.2.3

  • Typo3 Sr Feuser Register Extension 2.2.4

  • Typo3 Sr Feuser Register Extension 2.2.5

  • Typo3 Sr Feuser Register Extension 2.2.6

  • Typo3 Sr Feuser Register Extension 2.2.7

  • Typo3 Sr Feuser Register Extension 2.4.0

  • Typo3 Sr Feuser Register Extension 2.5.0

  • Typo3 Sr Feuser Register Extension 2.5.1

  • Typo3 Sr Feuser Register Extension 2.5.2

  • Typo3 Sr Feuser Register Extension 2.5.3

  • Typo3 Sr Feuser Register Extension 2.5.4

  • Typo3 Sr Feuser Register Extension 2.5.5

  • Typo3 Sr Feuser Register Extension 2.5.6

  • Typo3 Sr Feuser Register Extension 2.5.7

  • Typo3 Sr Feuser Register Extension 2.5.8

  • Typo3 Sr Feuser Register Extension 2.5.9


References

CONFIRM - http://typo3.org/teams/security/security-bulletins/typo3-20080515-1/

SECUNIA - 30275

XF - srfeuserregister-unspecified-code-execution(42445)

BID - 29239


Last Updated: 27 May 2016 10:47:48