Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6399

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2008-6399
Last Modified 06 Mar 2009 12:00:00
Published 05 Mar 2009 03:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6399

Summary

Unspecified vulnerability in DotNetNuke 4.5.2 through 4.9 allows remote attackers to "add additional roles to their user account" via unknown attack vectors.

Vulnerable Systems

Application

  • Dotnetnuke 4.5.2

  • Dotnetnuke 4.8.1

  • Dotnetnuke 4.8.2

  • Dotnetnuke 4.8.3

  • Dotnetnuke 4.8.4

  • Dotnetnuke 4.9


References

BID - 33109

CONFIRM - http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno24/tabid/1188/Default.aspx

SECUNIA - 33401

OSVDB - 51141


Last Updated: 27 May 2016 10:49:10