Vulnerability Description
generaloptions.php in Paul Tarjan Stanford Conference And Research Forum (SCARF) before 20070227 does not require the admin privilege, which allows remote attackers to reconfigure the application or its user accounts.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Paul Tarjan | Stanford Conference And Research Forum | beta |
Related Weaknesses (CWE)
References
- http://secunia.com/advisories/24311Vendor Advisory
- http://sourceforge.net/project/shownotes.php?group_id=177652&release_id=489633
- http://www.securityfocus.com/archive/1/450679/100/0/threaded
- http://www.securityfocus.com/archive/1/460196/100/0/threaded
- http://www.securityfocus.com/bid/20934
- http://www.vupen.com/english/advisories/2007/0760Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30037
- https://exchange.xforce.ibmcloud.com/vulnerabilities/32700
- http://secunia.com/advisories/24311Vendor Advisory
- http://sourceforge.net/project/shownotes.php?group_id=177652&release_id=489633
- http://www.securityfocus.com/archive/1/450679/100/0/threaded
- http://www.securityfocus.com/archive/1/460196/100/0/threaded
- http://www.securityfocus.com/bid/20934
- http://www.vupen.com/english/advisories/2007/0760Vendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30037
FAQ
What is CVE-2006-5909?
CVE-2006-5909 is a vulnerability with a CVSS score of 5.0 (MEDIUM). generaloptions.php in Paul Tarjan Stanford Conference And Research Forum (SCARF) before 20070227 does not require the admin privilege, which allows remote attackers to reconfigure the application or i...
How severe is CVE-2006-5909?
CVE-2006-5909 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2006-5909?
Check the references section above for vendor advisories and patch information. Affected products include: Paul Tarjan Stanford Conference And Research Forum.