Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3225

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2008-3225
Last Modified 09 Jun 2009 01:25:10
Published 18 Jul 2008 12:41:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3225

Summary

Joomla! before 1.5.4 allows attackers to access administration functionality, which has unknown impact and attack vectors related to a missing "LDAP security fix."

Vulnerable Systems

Application

  • Joomla 1.0

  • Joomla 1.0.0

  • Joomla 1.0.1

  • Joomla 1.0.10

  • Joomla 1.0.11

  • Joomla 1.0.12

  • Joomla 1.0.13

  • Joomla 1.0.2

  • Joomla 1.0.3

  • Joomla 1.0.4

  • Joomla 1.0.5

  • Joomla 1.0.6

  • Joomla 1.0.7

  • Joomla 1.0.8

  • Joomla 1.0.9

  • Joomla 1.03

  • Joomla 1.5

  • Joomla 1.5.0 Beta

  • Joomla 1.5.0 Beta1

  • Joomla 1.5.0 Beta2

  • Joomla 1.5.0 Rc1

  • Joomla 1.5.1

  • Joomla 1.5.2

  • Joomla 1.5.3


References

CONFIRM - http://www.joomla.org/content/view/5180/1/

XF - joomla-ldap-unauth-access(43648)

BID - 30125

MLIST - [oss-security] 20080712 CVE requests: joomla <1.5.4


Last Updated: 27 May 2016 10:48:07