Published: 16/06/2005 Updated: 18/10/2016

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Ultimate PHP Board (UPB) 1.9.6 GOLD uses weak encryption for passwords in the users.dat file, which allows malicious users to easily decrypt the passwords and gain privileges, possibly after exploiting CVE-2005-2005 to obtain users.dat.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ultimate php board ultimate php board 1.9
ultimate php board ultimate php board 1.9.6
ultimate php board ultimate php board 1.8
ultimate php board ultimate php board 1.8.2

source: wwwsecurityfocuscom/bid/13975/info Ultimate PHP Board is prone to a weak password encryption vulnerability This issue is due to a failure of the application to protect passwords with a sufficiently effective encryption scheme This issue may allow a malicious user to gain access to user and administrator passwords for the affect ...

NVD-CWE-Other http://www.securityfocus.com/bid/13975 http://marc.info/?l=bugtraq&m=111893777504821&w=2 https://nvd.nist.gov https://www.exploit-db.com/exploits/25838/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2005-2030

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect