Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3920

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-3920
Last Modified 19 Aug 2009 01:18:57
Published 04 Sep 2008 02:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3920

Summary

Unspecified vulnerability in BitlBee before 1.2.2 allows remote attackers to "recreate" and "hijack" existing accounts via unspecified vectors.

Vulnerable Systems

Application

  • Bitlbee 0.71

  • Bitlbee 0.72

  • Bitlbee 0.73

  • Bitlbee 0.74

  • Bitlbee 0.80

  • Bitlbee 0.81

  • Bitlbee 0.82

  • Bitlbee 0.83

  • Bitlbee 0.84

  • Bitlbee 0.85

  • Bitlbee 0.90

  • Bitlbee 0.91

  • Bitlbee 0.92

  • Bitlbee 0.93

  • Bitlbee 0.99

  • Bitlbee 1.0

  • Bitlbee 1.0.1

  • Bitlbee 1.0.2

  • Bitlbee 1.0.3

  • Bitlbee 1.0.4

  • Bitlbee 1.1

  • Bitlbee 1.1.1

  • Bitlbee 1.2

  • Bitlbee 1.2.1


References

FEDORA - FEDORA-2008-7830

FEDORA - FEDORA-2008-7712

FEDORA - FEDORA-2008-7274

CONFIRM - https://bugzilla.redhat.com/show_bug.cgi?id=460355

XF - bitlbee-unspecified-security-bypass(44699)

BID - 30858

GENTOO - GLSA-200809-14

SECUNIA - 31991

SECUNIA - 31690

SECUNIA - 31633

CONFIRM - http://bitlbee.org/main.php/changelog.html


Last Updated: 27 May 2016 10:48:20