1. CVE-Search
  2. CVE-2009-3654
ID CVE-2009-3654
Summary Unspecified vulnerability in Boost before 6.x-1.03, a module for Drupal, allows remote attackers to create new webroot directories via unknown attack vectors.
References
Vulnerable Configurations
  • cpe:2.3:a:316solutions:boost:6.x-1.0:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0:rc5:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0:rc5:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-alpha1:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-alpha1:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-alpha2:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-alpha2:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-alpha3:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-alpha3:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-alpha4:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-alpha4:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-beta1:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-beta1:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-beta2:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-beta2:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-rc1:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-rc1:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-rc2:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-rc2:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-rc3:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-rc3:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-rc4:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-rc4:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.0-rc5:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.0-rc5:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:*:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:*:*:*:*:*:*:*:*
  • cpe:2.3:a:316solutions:boost:6.x-1.x-dev:*:*:*:*:*:*:*
    cpe:2.3:a:316solutions:boost:6.x-1.x-dev:*:*:*:*:*:*:*
  • cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*
    cpe:2.3:a:drupal:drupal:*:*:*:*:*:*:*:*
CVSS
Base: 6.4 (as of 17-08-2017 - 01:31)
Impact:
Exploitability:
CWE NVD-CWE-Other
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
NONE PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:N/I:P/A:P
refmap via4
bid 36561
confirm
osvdb 58424
secunia 36925
xf boost-unspecified-security-bypass(53553)
Last major update 17-08-2017 - 01:31
Published 09-10-2009 - 14:30
Last modified 17-08-2017 - 01:31
Back to Top