CVE-2007-3208 - CRLF injection vulnerability in Yet another Bulletin Board (YaBB) 2.1 allows remote attackers to obt

CVE-2007-3208

Summary

CRLF injection vulnerability in Yet another Bulletin Board (YaBB) 2.1 allows remote attackers to obtain administrative access via requests to (1) register.pl or (2) profile.pl that write CRLF sequences to a .vars file. NOTE: this can be leveraged to execute arbitrary code.

References

Vulnerable Configurations

cpe:2.3:a:yabb:yabb:2.1:*:*:*:*:*:*:*
cpe:2.3:a:yabb:yabb:2.1:*:*:*:*:*:*:*

CVSS

Base:	10.0 (as of 29-07-2017 - 01:32)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
COMPLETE	COMPLETE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:C/I:C/A:C

refmap via4

bid	24455
confirm	http://www.yabbforum.com/community/?board=general;action=display;num=1181678785
idefense	20070612 YaBB Forum member.vars CRLF
osvdb	37236 37237
sectrack	1018236
secunia	25656
xf	yabb-vars-privilege-escalation(34848)

Last major update

29-07-2017 - 01:32

Published

14-06-2007 - 19:30

Last modified

29-07-2017 - 01:32