CVE-2009-4449

Vulnerability Description

Directory traversal vulnerability in MyBB (aka MyBulletinBoard) 1.4.10, and possibly earlier versions, when changing the user avatar from the gallery, allows remote authenticated users to determine the existence of files via directory traversal sequences in the avatar and possibly the gallery parameters, related to (1) admin/modules/user/users.php and (2) usercp.php.

CVSS Score

Affected Products

Related Weaknesses (CWE)

References

• http://blog.mybboard.net/2009/12/29/mybb-1-4-11-released-minor-patch-security-upRelease Notes
• http://dev.mybboard.net/issues/617Broken Link
• http://dev.mybboard.net/projects/mybb/repository/revisions/4663/diff/branches/1.Broken LinkExploit
• http://dev.mybboard.net/projects/mybb/repository/revisions/4663/diff/branches/1.Broken LinkExploit
• http://openwall.com/lists/oss-security/2010/10/08/7Mailing List
• http://openwall.com/lists/oss-security/2010/10/11/8Mailing List
• http://openwall.com/lists/oss-security/2010/12/06/2Mailing List
• http://osvdb.org/61359Broken Link
• http://secunia.com/advisories/37906Broken LinkVendor Advisory
• http://www.securityfocus.com/bid/37489Broken LinkThird Party AdvisoryVDB Entry
• http://www.vupen.com/english/advisories/2009/3651Permissions RequiredVendor Advisory
• http://blog.mybboard.net/2009/12/29/mybb-1-4-11-released-minor-patch-security-upRelease Notes
• http://dev.mybboard.net/issues/617Broken Link
• http://dev.mybboard.net/projects/mybb/repository/revisions/4663/diff/branches/1.Broken LinkExploit
• http://dev.mybboard.net/projects/mybb/repository/revisions/4663/diff/branches/1.Broken LinkExploit