Lucene search

MitreCVE-2003-1162

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2003-1162

2005-05-1004:00:00

mitre

web.nvd.nist.gov

tritanium

bulletin board

cve-2003-1162

remote attack

security vulnerability

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.032

Percentile

91.2%

JSON

index.php in Tritanium Bulletin Board 1.2.3 allows remote attackers to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.

Affected configurations

Nvd

Node

tritanium_scriptstritanium_bulletin_boardMatch0.993_beta

tritanium_scriptstritanium_bulletin_boardMatch0.994_beta

tritanium_scriptstritanium_bulletin_boardMatch0.999_beta

tritanium_scriptstritanium_bulletin_boardMatch1.0_beta

tritanium_scriptstritanium_bulletin_boardMatch1.1_final

tritanium_scriptstritanium_bulletin_boardMatch1.2

tritanium_scriptstritanium_bulletin_boardMatch1.2.1

tritanium_scriptstritanium_bulletin_boardMatch1.2.2

tritanium_scriptstritanium_bulletin_boardMatch1.2.3

VendorProductVersionCPE
tritanium_scriptstritanium_bulletin_board0.993_betacpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.993_beta:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board0.994_betacpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.994_beta:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board0.999_betacpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.999_beta:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board1.0_betacpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.0_beta:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board1.1_finalcpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.1_final:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board1.2cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board1.2.1cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.1:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board1.2.2cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.2:*:*:*:*:*:*:*
tritanium_scriptstritanium_bulletin_board1.2.3cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
tritanium_scripts	tritanium_bulletin_board	0.993_beta	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.993_beta:::::::*
tritanium_scripts	tritanium_bulletin_board	0.994_beta	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.994_beta:::::::*
tritanium_scripts	tritanium_bulletin_board	0.999_beta	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:0.999_beta:::::::*
tritanium_scripts	tritanium_bulletin_board	1.0_beta	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.0_beta:::::::*
tritanium_scripts	tritanium_bulletin_board	1.1_final	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.1_final:::::::*
tritanium_scripts	tritanium_bulletin_board	1.2	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2:::::::*
tritanium_scripts	tritanium_bulletin_board	1.2.1	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.1:::::::*
tritanium_scripts	tritanium_bulletin_board	1.2.2	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.2:::::::*
tritanium_scripts	tritanium_bulletin_board	1.2.3	cpe:2.3:a:tritanium_scripts:tritanium_bulletin_board:1.2.3:::::::*

References

archives.neohapsis.com/archives/bugtraq/2003-10/0348.html

secunia.com/advisories/10135

www.osvdb.org/2770

www.securityfocus.com/bid/8944

exchange.xforce.ibmcloud.com/vulnerabilities/13587

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

AI Score

7.1

Confidence

Low

EPSS

0.032

Percentile

91.2%

JSON

Related for CVE-2003-1162