CVE-2014-6632

Sažetak

Joomla! 2.5.x before 2.5.25, 3.x before 3.2.4, and 3.3.x before 3.3.4 allows remote attackers to authenticate and bypass intended access restrictions via vectors involving LDAP authentication.

Reference

http://developer.joomla.org/security/594-20140902-core-unauthorised-logins.html
http://secunia.com/advisories/61606
http://secunia.com/advisories/61638

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

09-10-2014 - 16:46

Objavljeno

08-10-2014 - 19:55