Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6506

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6506
Last Modified 24 Apr 2010 01:33:45
Published 23 Mar 2009 12:30:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6506

Summary

Unspecified vulnerability in phpBB before 3.0.4 allows attackers to bypass intended access restrictions and activate de-activated accounts via unknown vectors.

Vulnerable Systems

Application

  • Phpbb 1.0

  • Phpbb 2.0

  • Phpbb 2.0.1

  • Phpbb 2.0.2

  • Phpbb 2.0.22

  • Phpbb 2.0.3

  • Phpbb 2.01

  • Phpbb 3.0

  • Phpbb 3.0.1

  • Phpbb 3.0.2

  • Phpbb 3.0.3


References

XF - phpbb-account-activation-security-bypass(47370)

BID - 32842

CONFIRM - http://www.phpbb.com/support/documents.php?mode=changelog&version=3#v303

CONFIRM - http://www.phpbb.com/community/viewtopic.php?f=14&t=1352565

OSVDB - 50806

MLIST - [oss-security] 20090206 CVE request: phpbb < 3.0.4

SECUNIA - 33166


Last Updated: 27 May 2016 10:49:13