Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4793

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-4793
Last Modified 19 Aug 2009 01:20:41
Published 29 Oct 2008 11:31:35
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-4793

Summary

The node module API in Drupal 5.x before 5.11 allows remote attackers to bypass node validation and have unspecified other impact via unknown vectors related to contributed modules.

Vulnerable Systems

Application

  • Drupal 5.0

  • Drupal 5.1

  • Drupal 5.10

  • Drupal 5.2

  • Drupal 5.3

  • Drupal 5.4

  • Drupal 5.5

  • Drupal 5.6

  • Drupal 5.7

  • Drupal 5.8

  • Drupal 5.9


References

CONFIRM - http://drupal.org/node/318706

XF - drupal-nodemoduleapi-security-bypass(45763)

MLIST - [oss-security] 20081021 CVE req: drupal < 5.11/6.5

SECUNIA - 32200


Last Updated: 27 May 2016 10:48:38