1. CVE-Search
  2. CVE-2009-1604
ID CVE-2009-1604
Summary Unspecified vulnerability in LimeSurvey before 1.82 allows remote attackers to execute commands and obtain sensitive data via unknown attack vectors related to /admin/remotecontrol/.
References
Vulnerable Configurations
  • cpe:2.3:a:limesurvey:limesurvey:1.80:*:*:*:*:*:*:*
    cpe:2.3:a:limesurvey:limesurvey:1.80:*:*:*:*:*:*:*
  • cpe:2.3:a:limesurvey:limesurvey:1.80:rc4:*:*:*:*:*:*
    cpe:2.3:a:limesurvey:limesurvey:1.80:rc4:*:*:*:*:*:*
  • cpe:2.3:a:limesurvey:limesurvey:1.80\+:*:*:*:*:*:*:*
    cpe:2.3:a:limesurvey:limesurvey:1.80\+:*:*:*:*:*:*:*
  • cpe:2.3:a:limesurvey:limesurvey:1.81:*:*:*:*:*:*:*
    cpe:2.3:a:limesurvey:limesurvey:1.81:*:*:*:*:*:*:*
  • cpe:2.3:a:limesurvey:limesurvey:1.81\+:*:*:*:*:*:*:*
    cpe:2.3:a:limesurvey:limesurvey:1.81\+:*:*:*:*:*:*:*
CVSS
Base: 7.5 (as of 23-05-2009 - 05:31)
Impact:
Exploitability:
CWE NVD-CWE-noinfo
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
refmap via4
bid 34785
confirm http://www.limesurvey.org/content/view/169/1/lang,en/
secunia 34946
vupen ADV-2009-1219
Last major update 23-05-2009 - 05:31
Published 11-05-2009 - 20:00
Last modified 23-05-2009 - 05:31
Back to Top