Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-1565

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2012-1565
Last Modified 08 Oct 2012 12:00:00
Published 06 Oct 2012 05:55:04
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2012-1565

Summary

Unspecified vulnerability in ez Publish 4.1.4, 4.2, 4.3, 4.4, 4.5, and 4.6 has unknown impact and attack vectors related to an insecure direct object reference.

Vulnerable Systems

Application

  • Ez Publish 4.1.4

  • Ez Publish 4.2

  • Ez Publish 4.3

  • Ez Publish 4.4

  • Ez Publish 4.5

  • Ez Publish 4.6


References

XF - ezpublish-unspec-vuln(74060)

BID - 52516

MLIST - [oss-security] 20120319 CVE request: eZ Publish: insecure direct object reference

MLIST - [oss-security] 20120319 Re: CVE request: eZ Publish: insecure direct object reference

SECUNIA - 48338

OSVDB - 80098

CONFIRM - http://issues.ez.no/19238


Last Updated: 27 May 2016 11:00:53