{ "CVE_data_meta": { "ASSIGNER": "cve@mitre.org", "ID": "CVE-2000-0627", "STATE": "PUBLIC" }, "affects": { "vendor": { "vendor_data": [ { "product": { "product_data": [ { "product_name": "n/a", "version": { "version_data": [ { "version_value": "n/a" } ] } } ] }, "vendor_name": "n/a" } ] } }, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": { "description_data": [ { "lang": "eng", "value": "BlackBoard CourseInfo 4.0 does not properly authenticate users, which allows local users to modify CourseInfo database information and gain privileges by directly calling the supporting CGI programs such as user_update_passwd.pl and user_update_admin.pl." } ] }, "problemtype": { "problemtype_data": [ { "description": [ { "lang": "eng", "value": "n/a" } ] } ] }, "references": { "reference_data": [ { "name": "20000719 Security Fix for Blackboard CourseInfo 4.0", "refsource": "BUGTRAQ", "url": "http://www.securityfocus.com/frames/?content=/templates/archive.pike%3Flist%3D1%26msg%3D20000719151904.I17986@securityfocus.com" }, { "name": "1486", "refsource": "BID", "url": "http://www.securityfocus.com/bid/1486" }, { "name": "20000718 Blackboard Courseinfo v4.0 User Authentication", "refsource": "BUGTRAQ", "url": "http://archives.neohapsis.com/archives/bugtraq/2000-07/0254.html" }, { "name": "blackboard-courseinfo-dbase-modification(4946)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/4946" } ] } }