Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6507

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6507
Last Modified 24 Mar 2009 12:00:00
Published 23 Mar 2009 12:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6507

Summary

Unspecified vulnerability in phpBB before 3.0.4 allows attackers to obtain sensitive information via unknown vectors related to the lack of password prompts for a private message that quotes a post in a password-protected forum.

Vulnerable Systems

Application

  • Phpbb 3.0.0

  • Phpbb 3.0.1

  • Phpbb 3.0.2

  • Phpbb 3.0.3


References

CONFIRM - http://www.phpbb.com/support/documents.php?mode=changelog&version=3#v303

CONFIRM - http://www.phpbb.com/community/viewtopic.php?f=14&t=1352565

OSVDB - 50806

MLIST - [oss-security] 20090206 CVE request: phpbb < 3.0.4

SECUNIA - 33166


Last Updated: 27 May 2016 10:49:13