Lucene search

MitreCVE-2011-5133

HistoryAug 30, 2012 - 10:55 p.m.

CVE-2011-5133

2012-08-3022:55:04

mitre

web.nvd.nist.gov

mybb

vulnerability

cve-2011-5133

nvd

unparsed user avatar

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

71.4%

JSON

Unspecified vulnerability in MyBB before 1.6.5 has unknown impact and attack vectors, related to an “unparsed user avatar in the buddy list.”

Affected configurations

Nvd

Node

mybbmybbRange≤1.6.4

mybbmybbMatch1.1.0

mybbmybbMatch1.1.1

mybbmybbMatch1.1.2

mybbmybbMatch1.1.3

mybbmybbMatch1.1.4

mybbmybbMatch1.1.5

mybbmybbMatch1.1.6

mybbmybbMatch1.1.7

mybbmybbMatch1.1.8

mybbmybbMatch1.2

mybbmybbMatch1.2.0

mybbmybbMatch1.2.1

mybbmybbMatch1.2.2

mybbmybbMatch1.2.3

mybbmybbMatch1.2.4

mybbmybbMatch1.2.5

mybbmybbMatch1.2.6

mybbmybbMatch1.2.7

mybbmybbMatch1.2.8

mybbmybbMatch1.2.9

mybbmybbMatch1.2.10

mybbmybbMatch1.2.11

mybbmybbMatch1.2.12

mybbmybbMatch1.2.13

mybbmybbMatch1.2.14

mybbmybbMatch1.3pre-1.0

mybbmybbMatch1.4.0

mybbmybbMatch1.4.1

mybbmybbMatch1.4.2

mybbmybbMatch1.4.3

mybbmybbMatch1.4.4

mybbmybbMatch1.4.5

mybbmybbMatch1.4.6

mybbmybbMatch1.4.7

mybbmybbMatch1.4.8

mybbmybbMatch1.4.9

mybbmybbMatch1.4.10

mybbmybbMatch1.4.11

mybbmybbMatch1.4.12

mybbmybbMatch1.4.13

mybbmybbMatch1.4.14

mybbmybbMatch1.4.15

mybbmybbMatch1.4.16

mybbmybbMatch1.5.1

mybbmybbMatch1.5.2

mybbmybbMatch1.6.0

mybbmybbMatch1.6.1

mybbmybbMatch1.6.2

mybbmybbMatch1.6.3

VendorProductVersionCPE
mybbmybb*cpe:2.3:a:mybb:mybb:*:*:*:*:*:*:*:*
mybbmybb1.1.0cpe:2.3:a:mybb:mybb:1.1.0:*:*:*:*:*:*:*
mybbmybb1.1.1cpe:2.3:a:mybb:mybb:1.1.1:*:*:*:*:*:*:*
mybbmybb1.1.2cpe:2.3:a:mybb:mybb:1.1.2:*:*:*:*:*:*:*
mybbmybb1.1.3cpe:2.3:a:mybb:mybb:1.1.3:*:*:*:*:*:*:*
mybbmybb1.1.4cpe:2.3:a:mybb:mybb:1.1.4:*:*:*:*:*:*:*
mybbmybb1.1.5cpe:2.3:a:mybb:mybb:1.1.5:*:*:*:*:*:*:*
mybbmybb1.1.6cpe:2.3:a:mybb:mybb:1.1.6:*:*:*:*:*:*:*
mybbmybb1.1.7cpe:2.3:a:mybb:mybb:1.1.7:*:*:*:*:*:*:*
mybbmybb1.1.8cpe:2.3:a:mybb:mybb:1.1.8:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mybb	mybb	*	cpe:2.3:a:mybb:mybb::::::::
mybb	mybb	1.1.0	cpe:2.3:a:mybb:mybb:1.1.0:::::::*
mybb	mybb	1.1.1	cpe:2.3:a:mybb:mybb:1.1.1:::::::*
mybb	mybb	1.1.2	cpe:2.3:a:mybb:mybb:1.1.2:::::::*
mybb	mybb	1.1.3	cpe:2.3:a:mybb:mybb:1.1.3:::::::*
mybb	mybb	1.1.4	cpe:2.3:a:mybb:mybb:1.1.4:::::::*
mybb	mybb	1.1.5	cpe:2.3:a:mybb:mybb:1.1.5:::::::*
mybb	mybb	1.1.6	cpe:2.3:a:mybb:mybb:1.1.6:::::::*
mybb	mybb	1.1.7	cpe:2.3:a:mybb:mybb:1.1.7:::::::*
mybb	mybb	1.1.8	cpe:2.3:a:mybb:mybb:1.1.8:::::::*

Rows per page:

1-10 of 501

References

blog.mybb.com/2011/11/25/mybb-1-6-5-released-feature-update-security-maintenance-release/

secunia.com/advisories/46951

www.osvdb.org/77325

www.securityfocus.com/bid/50816

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

71.4%

JSON

Related for CVE-2011-5133