Post.pl in YaBB 1 Gold SP 1.2 allows remote attackers to modify records in the board's .txt file via carriage return characters in the subject field.
References
Link | Resource |
---|---|
http://marc.info/?l=bugtraq&m=108360430703935&w=2 | |
http://secunia.com/advisories/12609 | Exploit Patch Vendor Advisory |
http://www.securityfocus.com/bid/10263 | Exploit Patch Vendor Advisory |
http://www.yabbforum.com/community/YaBB.pl?board=general%3Baction=display%3Bnum=1093133233 | |
https://exchange.xforce.ibmcloud.com/vulnerabilities/16050 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-05-10T04:00:00
Updated: 2017-07-10T14:57:01
Reserved: 2005-05-04T00:00:00
Link: CVE-2004-1982
JSON object: View
NVD Information
Status : Modified
Published: 2004-05-03T04:00:00.000
Modified: 2023-11-07T01:56:59.533
Link: CVE-2004-1982
JSON object: View
Redhat Information
No data.
CWE