Lucene search

PRIOn knowledge basePRION:CVE-2007-6319

HistoryFeb 19, 2008 - 10:44 p.m.

Code injection

2008-02-1922:44:00

PRIOn knowledge base

www.prio-n.com

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.013 Low

EPSS

Percentile

85.4%

JSON

Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to (1) gain list administrator privileges or (2) access arbitrary mailing lists via unknown vectors related to modification of client-side information; and (3) allow remote authenticated administrators to modify other account data by creating “new accounts that collide with existing accounts.”

CPENameOperatorVersion
list_managereq8.95.97
list_managereq9.2.98
list_managereq8.95
list_managereq8.95.99
list_managereq9.3.97
list_managereq9.2
list_managereq9.2.97
list_managereq9.3
list_managereq8.95.98

Name	Operator	Version
list_manager	eq	8.95.97
list_manager	eq	9.2.98
list_manager	eq	8.95
list_manager	eq	8.95.99
list_manager	eq	9.3.97
list_manager	eq	9.2
list_manager	eq	9.2.97
list_manager	eq	9.3
list_manager	eq	8.95.98

References

secunia.com/advisories/29019

securityreason.com/securityalert/3671

securitytracker.com/id?1019436

www.securityfocus.com/archive/1/488343/100/0/threaded

www.securityfocus.com/bid/26792

www.vupen.com/english/advisories/2008/0618

7.1 High

AI Score

Confidence

Low

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.013 Low

EPSS

Percentile

85.4%

JSON

Related for PRION:CVE-2007-6319