Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-4930


Vulnerability Score 5.0 5.0
CVE Id CVE-2008-4930
Last Modified 05 Nov 2008 12:00:00
Published 04 Nov 2008 04:00:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



MyBB (aka MyBulletinBoard) 1.4.2 does not properly handle an uploaded file with a nonstandard file type that contains HTML sequences, which allows remote attackers to cause that file to be processed as HTML by Internet Explorer's content inspection, aka "Incomplete protection against MIME-sniffing." NOTE: this could be leveraged for XSS and other attacks.

Vulnerable Systems


  • Mybb 1.4.2


MLIST - [oss-security] 20081101 CVE request (Fwd: MyBB 1.4.2: Multiple Vulnerabilties)

FULLDISC - 20081027 MyBB 1.4.2: Multiple Vulnerabilties

Last Updated: 27 May 2016 10:48:40