CVE-2007-6319

Sažetak

Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to (1) gain list administrator privileges or (2) access arbitrary mailing lists via unknown vectors related to modification of client-side information; and (3) allow remote authenticated administrators to modify other account data by creating "new accounts that collide with existing accounts."

Reference

http://secunia.com/advisories/29019
http://securityreason.com/securityalert/3671
http://securitytracker.com/id?1019436
http://www.securityfocus.com/archive/1/488343/100/0/threaded
http://www.securityfocus.com/bid/26792
http://www.vupen.com/english/advisories/2008/0618

CVSS

Base:	10.0
Impact:	10.0
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
COMPLETE	COMPLETE	COMPLETE

CVSS vektor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Zadnje važnije ažuriranje

15-10-2018 - 21:52

Objavljeno

19-02-2008 - 22:44