Moodle Teacher Account Arbitrary Administrative Access

2004-03-20T02:37:00
ID OSVDB:7711
Type osvdb
Reporter OSVDB
Modified 2004-03-20T02:37:00

Description

Vulnerability Description

Moodle contains a flaw related to "Teacher" accounts having the ability to gain administrative access related to students in their course. No further details have been provided.

Solution Description

Upgrade to version 1.2 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Moodle contains a flaw related to "Teacher" accounts having the ability to gain administrative access related to students in their course. No further details have been provided.

References:

Vendor URL: http://moodle.org/ Vendor Specific Advisory URL CVE-2004-2235 CVE-2004-2234