CVE-2008-6844

Published: 02/07/2009 Updated: 29/09/2017

CVSS v2 Base Score: 7.5 | Impact Score: 6.4 | Exploitability Score: 10

VMScore: 755

Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P

The registration view (/user/register) in eZ Publish 3.5.6 and previous versions, and possibly other versions prior to 3.9.5, 3.10.1, and 4.0.1, allows remote malicious users to gain privileges as other users via modified ContentObjectAttribute_data_user_login_30, ContentObjectAttribute_data_user_password_30, and other parameters.

Vulnerable Product	Search on Vulmon	Subscribe to Product
ez ez publish 3.6.3
ez ez publish 3.6.1
ez ez publish 3.5.8
ez ez publish 3.6.4
ez ez publish 3.8.8
ez ez publish 3.9.0
ez ez publish 4.0
ez ez publish 3.7.1
ez ez publish 3.6.0
ez ez publish 3.9.2
ez ez publish 3.10
ez ez publish 3.4.8
ez ez publish 3.5.7
ez ez publish 3.7.3
ez ez publish 3.5.5
ez ez publish
ez ez publish 3.5.4
ez ez publish 3.8.9
ez ez publish 3.7.2
ez ez publish 3.6.5
ez ez publish 3.9.1
ez ez publish 3.6.2
ez ez publish 3.7.0
ez ez publish 3.9.4

<?php /* eZ Publish privilege escalation exploit by s4avrd0w [s4avrd0w@p0cru] Versions affected >= 356 Resolved in 395, 3101, 401 More info: ezno/developer/security/security_advisories/ez_publish_3_9/ezsa_2008_003_insufficient_form_handling_made_privilege_escalation_possible * tested on version 390 usage: # /eZ ...

CWE-264 http://ez.no/developer/security/security_advisories/ez_publish_4_0/ezsa_2008_003_insufficient_form_handling_made_privilege_escalation_possible http://www.osvdb.org/52708 http://www.securityfocus.com/bid/32762 https://exchange.xforce.ibmcloud.com/vulnerabilities/47216 https://www.exploit-db.com/exploits/7406 https://nvd.nist.gov https://www.exploit-db.com/exploits/7406/

CVE-2008-6844

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect