Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6971

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-6971
Last Modified 19 Aug 2009 12:00:00
Published 13 Aug 2009 12:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-6971

Summary

The password reset functionality in Simple Machines Forum (SMF) 1.0.x before 1.0.14, 1.1.x before 1.1.6, and 2.0 before 2.0 beta 4 includes clues about the random number generator state within a hidden form field and generates predictable validation codes, which allows remote attackers to modify passwords of other users and gain privileges.

Vulnerable Systems

Application

  • Simplemachines Smf 1.0.12

  • Simplemachines Smf 1.0.13

  • Simplemachines Smf 1.1.4

  • Simplemachines Smf 1.1.5

  • Simplemachines Smf 2.0

  • Simplemachines Smf 2.0-beta2

  • Simplemachines Smf 2.0-beta3


References

CONFIRM - http://www.simplemachines.org/community/index.php?topic=260145.0

XF - smf-password-reset-security-bypass(44931)

BID - 31053

MILW0RM - 6392

SECUNIA - 31750

OSVDB - 47945


Last Updated: 27 May 2016 10:49:24