CVE-2008-3268
Last modified
CVE-2008-3268 is a vulnerability of currently unknown severity. Unspecified vulnerability in phpScheduleIt 1.2.0 through 1.2.9, when useLogonName is enabled, allows remote attackers with administrator email address knowledge to bypass restrictions and gain privileges via unspecified vectors related to login names. NOTE: some of these details are obtained from third party information.. EPSS estimates a 1.86% chance of exploitation in the next 30 days.
Description
Unspecified vulnerability in phpScheduleIt 1.2.0 through 1.2.9, when useLogonName is enabled, allows remote attackers with administrator email address knowledge to bypass restrictions and gain privileges via unspecified vectors related to login names. NOTE: some of these details are obtained from third party information.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Brickhost | Phpscheduleit | 1.2.0 |
| Brickhost | Phpscheduleit | 1.2.1 |
| Brickhost | Phpscheduleit | 1.2.2 |
| Brickhost | Phpscheduleit | 1.2.3 |
| Brickhost | Phpscheduleit | 1.2.4 |
| Brickhost | Phpscheduleit | 1.2.5 |
| Brickhost | Phpscheduleit | 1.2.6 |
| Brickhost | Phpscheduleit | 1.2.7 |
| Brickhost | Phpscheduleit | 1.2.9 |
References
- http://secunia.com/advisories/31147Vendor Advisory
- http://secunia.com/advisories/31147Vendor Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2008-3268?
How severe is CVE-2008-3268?
How do I fix CVE-2008-3268?
Are you affected by CVE-2008-3268?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST