Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2008-6603
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-03 Apr, 2009 | 18:30
Updated At-17 Aug, 2017 | 01:29

MoinMoin 1.6.2 and 1.7 does not properly enforce ACL checks when acl_hierarchic is set to True, which might allow remote attackers to bypass intended access restrictions, a different vulnerability than CVE-2008-1937.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.06.8MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
CPE Matches
moinmo
moinmo
>>moinmoin>>1.6.2
cpe:2.3:a:moinmo:moinmoin:1.6.2:*:*:*:*:*:*:*
moinmo
moinmo
>>moinmoin>>1.7.0
cpe:2.3:a:moinmo:moinmoin:1.7.0:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-264Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://hg.moinmo.in/moin/1.6/rev/543ae9bdbe26cve@mitre.org
Exploit
http://hg.moinmo.in/moin/1.7/rev/88356b3f849acve@mitre.org
Exploit
http://moinmo.in/MoinMoinBugs/AclHierarchicPageAclSupercededByAclRightsAftercve@mitre.org
N/A
http://moinmo.in/SecurityFixescve@mitre.org
Vendor Advisory
http://osvdb.org/48875cve@mitre.org
N/A
http://www.securityfocus.com/bid/34655cve@mitre.org
N/A
http://www.vupen.com/english/advisories/2008/1307cve@mitre.org
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/41911cve@mitre.org
N/A
Change History
0Changes found
Details not found