Lucene search

[email protected]CVE-2004-2139

HistoryDec 31, 2004 - 5:00 a.m.

CVE-2004-2139

2004-12-3105:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2004-2139

adminedit.pl

yabb 1 gold

arbitrary code execution

settings.pl

nvd

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.6%

JSON

Unknown vulnerability in Adminedit.pl YaBB 1 Gold before 1.3.2 allows attackers to execute arbitrary code via settings.pl.

CPENameOperatorVersion
yabb:yabbyabbeq1_gold_-_sp_1.3
yabb:yabbyabbeq1_gold_-_sp_1.3.1

CPE	Name	Operator	Version
yabb:yabb	yabb	eq	1_gold_-_sp_1.3
yabb:yabb	yabb	eq	1_gold_-_sp_1.3.1

References

secunia.com/advisories/12609/

www.osvdb.org/10222

www.securityfocus.com/bid/11235

www.yabbforum.com/community/YaBB.pl?board=general%3Baction=display%3Bnum=1093133233

exchange.xforce.ibmcloud.com/vulnerabilities/17459

7.6 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.007 Low

EPSS

Percentile

80.6%

JSON

Related for CVE-2004-2139

nessus1