phpBB 2.0.19 and earlier allows remote attackers to cause a denial of service (application crash) by (1) registering many users through profile.php or (2) using search.php to search in a certain way that confuses the database.

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Partial

AV:N/AC:L/Au:N/C:N/I:N/A:P
Vendors Products
Phpbb Group
  • Phpbb

Configuration 1 [-]

OR cpe:2.3:a:phpbb_group:phpbb:2.0.0:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.1:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.2:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.3:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.4:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.5:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.6:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.6c:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.6d:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.7:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.7a:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.8:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.8a:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.9:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.10:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.11:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.12:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.13:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.14:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.15:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.16:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.17:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.18:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0.19:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0_beta1:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0_rc1:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0_rc2:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0_rc3:*:*:*:*:*:*:*
cpe:2.3:a:phpbb_group:phpbb:2.0_rc4:*:*:*:*:*:*:*
References
Link Resource
http://h4cky0u.org/viewtopic.php?t=637
http://securityreason.com/securityalert/368
http://www.h4cky0u.org/advisories/HYSA-2006-001-phpbb.txt Exploit Vendor Advisory
http://www.securityfocus.com/archive/1/423030/100/0/threaded
https://exchange.xforce.ibmcloud.com/vulnerabilities/24327
History

No history.

cve-icon MITRE Information

Status: PUBLISHED

Assigner: mitre

Published: 2006-01-27T00:00:00

Updated: 2018-10-19T14:57:01

Reserved: 2006-01-26T00:00:00

Link: CVE-2006-0450

JSON object: View

cve-icon NVD Information

Status : Modified

Published: 2006-01-27T00:03:00.000

Modified: 2018-10-19T15:44:50.830

Link: CVE-2006-0450

JSON object: View

cve-icon Redhat Information

No data.

CWE