CVE-2005-2600

CVE-2005-2600

EPSS 1.6%

FUDForum 2.6.15 with "Tree View" enabled, as used in other products such as phpgroupware and egroupware, allows remote attackers to read private posts via a modified mid parameter.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://archives.neohapsis.com/archives/fulldisclosure/2005-08/0383.html http://secunia.com/advisories/16414 http://secunia.com/advisories/17643 http://www.debian.org/security/2005/dsa-798 http://www.debian.org/security/2005/dsa-899 http://www.securityfocus.com/bid/14556