Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-4311

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2011-4311
Last Modified 21 Nov 2011 12:00:00
Published 18 Nov 2011 10:58:55
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2011-4311

Summary

ResourceSpace before 4.2.2833 does not properly validate access keys, which allows remote attackers to bypass intended resource restrictions via unspecified vectors.

Vulnerable Systems

Application

  • Montala Resourcespace 2.2.1240

  • Montala Resourcespace 2.3.1374

  • Montala Resourcespace 3.0.1490

  • Montala Resourcespace 3.1.1557

  • Montala Resourcespace 3.2.1651

  • Montala Resourcespace 3.3.1723

  • Montala Resourcespace 3.4.1794

  • Montala Resourcespace 3.5.1857

  • Montala Resourcespace 3.6.2022

  • Montala Resourcespace 3.7.2088

  • Montala Resourcespace 3.8.2144

  • Montala Resourcespace 3.9.2269

  • Montala Resourcespace 4.0.2429

  • Montala Resourcespace 4.1.2567

  • Montala Resourcespace 4.2.2816


References

CONFIRM - http://www.resourcespace.org/download.php

MLIST - [oss-security] 20111114 Re: CVE request: ResourceSpace before 4.2.2833 insufficient access check

MLIST - [oss-security] 20111113 CVE request: ResourceSpace before 4.2.2833 insufficient access check


Last Updated: 27 May 2016 10:57:48