Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-5673

Overview

Vulnerability Score 6.5 6.5
CVE Id CVE-2008-5673
Last Modified 09 Jun 2009 12:00:00
Published 18 Dec 2008 08:52:02
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication SINGLE_INSTANCE

CVE-2008-5673

Summary

PHParanoid before 0.4 does not properly restrict access to the members area by unauthenticated users, which has unknown impact and remote attack vectors.

Vulnerable Systems

Application

  • Phparanoid 0.1

  • Phparanoid 0.2

  • Phparanoid 0.3


References

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=575358

XF - phparanoid-membersarea-security-bypass(40516)

SECUNIA - 28847


Last Updated: 27 May 2016 10:48:52