Vulnerability Description
The installation of Ultimate PHP Board (UPB) 1.9.6 and earlier includes a default administrator login account and password, which allows remote attackers to gain privileges.
CVSS Score
10.0
HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ultimate Php Board | Ultimate Php Board | 1.8 |
Related Weaknesses (CWE)
References
- http://securityreason.com/securityalert/1138Exploit
- http://www.kliconsulting.com/users/mbrooks/UPB_0-day.txtExploitPatchURL Repurposed
- http://www.securityfocus.com/archive/1/437875/100/0/threaded
- http://securityreason.com/securityalert/1138Exploit
- http://www.kliconsulting.com/users/mbrooks/UPB_0-day.txtExploitPatchURL Repurposed
- http://www.securityfocus.com/archive/1/437875/100/0/threaded
FAQ
What is CVE-2006-3203?
CVE-2006-3203 is a vulnerability with a CVSS score of 10.0 (HIGH). The installation of Ultimate PHP Board (UPB) 1.9.6 and earlier includes a default administrator login account and password, which allows remote attackers to gain privileges.
How severe is CVE-2006-3203?
CVE-2006-3203 has been rated HIGH with a CVSS base score of 10.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-3203?
Check the references section above for vendor advisories and patch information. Affected products include: Ultimate Php Board Ultimate Php Board.