2017-10-16 12:31:07 -04:00
{
2019-03-18 03:44:22 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "cve@mitre.org" ,
"ID" : "CVE-2006-5909" ,
"STATE" : "PUBLIC"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "n/a" ,
"version" : {
"version_data" : [
{
"version_value" : "n/a"
}
]
}
}
]
} ,
"vendor_name" : "n/a"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
2017-10-16 12:31:07 -04:00
{
2019-03-18 03:44:22 +00:00
"lang" : "eng" ,
"value" : "generaloptions.php in Paul Tarjan Stanford Conference And Research Forum (SCARF) before 20070227 does not require the admin privilege, which allows remote attackers to reconfigure the application or its user accounts."
2017-10-16 12:31:07 -04:00
}
2019-03-18 03:44:22 +00:00
]
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "n/a"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "scarf-generaloptions-privilege-escalation(30037)" ,
"refsource" : "XF" ,
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/30037"
} ,
{
"name" : "ADV-2007-0760" ,
"refsource" : "VUPEN" ,
"url" : "http://www.vupen.com/english/advisories/2007/0760"
} ,
{
"name" : "20070215 Re: Stanford university SCARF user editing" ,
"refsource" : "BUGTRAQ" ,
"url" : "http://www.securityfocus.com/archive/1/460196/100/0/threaded"
} ,
{
"name" : "http://sourceforge.net/project/shownotes.php?group_id=177652&release_id=489633" ,
"refsource" : "CONFIRM" ,
"url" : "http://sourceforge.net/project/shownotes.php?group_id=177652&release_id=489633"
} ,
{
"name" : "24311" ,
"refsource" : "SECUNIA" ,
"url" : "http://secunia.com/advisories/24311"
} ,
{
"name" : "20061104 Stanford university SCARF user editing" ,
"refsource" : "BUGTRAQ" ,
"url" : "http://www.securityfocus.com/archive/1/450679/100/0/threaded"
} ,
{
"name" : "scarf-generaloptions-security-bypass(32700)" ,
"refsource" : "XF" ,
"url" : "https://exchange.xforce.ibmcloud.com/vulnerabilities/32700"
} ,
{
"name" : "20934" ,
"refsource" : "BID" ,
"url" : "http://www.securityfocus.com/bid/20934"
}
]
}
}