Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-7101

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2008-7101
Last Modified 28 Aug 2009 12:00:00
Published 27 Aug 2009 04:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-7101

Summary

Unspecified vulnerability in DotNetNuke 4.0 through 4.8.4 and 5.0 allows remote attackers to obtain sensitive information (portal number) by accessing the install wizard page via unknown vectors.

Vulnerable Systems

Application

  • Dotnetnuke 4.0

  • Dotnetnuke 4.3.5

  • Dotnetnuke 4.4.1

  • Dotnetnuke 4.5.2

  • Dotnetnuke 4.5.4

  • Dotnetnuke 4.5.5

  • Dotnetnuke 4.6.0

  • Dotnetnuke 4.6.1

  • Dotnetnuke 4.6.2

  • Dotnetnuke 4.7.0

  • Dotnetnuke 4.8.0

  • Dotnetnuke 4.8.1

  • Dotnetnuke 4.8.2

  • Dotnetnuke 4.8.3

  • Dotnetnuke 4.8.4

  • Dotnetnuke 5.0


References

CONFIRM - http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno22/tabid/1175/Default.aspx

XF - dotnetnuke-installwizard-info-disclosure(45080)

BID - 31145

SECUNIA - 31893

OSVDB - 48344


Last Updated: 27 May 2016 10:49:28