Lucene search

MitreCVE-2013-5724

HistorySep 12, 2013 - 1:31 p.m.

CVE-2013-5724

2013-09-1213:31:18

CWE-264

mitre

web.nvd.nist.gov

cve-2013-5724

phpbb3

debian

gnu/linux

world-writable

permissions

cache files

nvd

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.4

Confidence

Low

EPSS

Percentile

5.1%

JSON

Phpbb3 before 3.0.11-4 for Debian GNU/Linux uses world-writable permissions for cache files, which allows local users to modify the file contents via standard filesystem write operations.

Affected configurations

Nvd

Node

debianphpbb3Range≤3.0.11-3

debianphpbb3Match3.0.0-1

debianphpbb3Match3.0.0-2

debianphpbb3Match3.0.0-b5

debianphpbb3Match3.0.0-rc1

debianphpbb3Match3.0.0-rc2-1

debianphpbb3Match3.0.0-rc3-1

debianphpbb3Match3.0.0-rc4-1

debianphpbb3Match3.0.0-rc5-1

debianphpbb3Match3.0.0-rc7-1

debianphpbb3Match3.0.1-1

debianphpbb3Match3.0.2-1

debianphpbb3Match3.0.2-2

debianphpbb3Match3.0.2-3

debianphpbb3Match3.0.2-4

debianphpbb3Match3.0.4-1

debianphpbb3Match3.0.7-p1-1

debianphpbb3Match3.0.7-p1-2

debianphpbb3Match3.0.7-p1-3

debianphpbb3Match3.0.7-p1-4

debianphpbb3Match3.0.7-p1-5

debianphpbb3Match3.0.9-1

debianphpbb3Match3.0.10-1

debianphpbb3Match3.0.10-2

debianphpbb3Match3.0.11-1

debianphpbb3Match3.0.11-2

VendorProductVersionCPE
debianphpbb3*cpe:2.3:a:debian:phpbb3:*:*:*:*:*:*:*:*
debianphpbb33.0.0-1cpe:2.3:a:debian:phpbb3:3.0.0-1:*:*:*:*:*:*:*
debianphpbb33.0.0-2cpe:2.3:a:debian:phpbb3:3.0.0-2:*:*:*:*:*:*:*
debianphpbb33.0.0-b5cpe:2.3:a:debian:phpbb3:3.0.0-b5:*:*:*:*:*:*:*
debianphpbb33.0.0-rc1cpe:2.3:a:debian:phpbb3:3.0.0-rc1:*:*:*:*:*:*:*
debianphpbb33.0.0-rc2-1cpe:2.3:a:debian:phpbb3:3.0.0-rc2-1:*:*:*:*:*:*:*
debianphpbb33.0.0-rc3-1cpe:2.3:a:debian:phpbb3:3.0.0-rc3-1:*:*:*:*:*:*:*
debianphpbb33.0.0-rc4-1cpe:2.3:a:debian:phpbb3:3.0.0-rc4-1:*:*:*:*:*:*:*
debianphpbb33.0.0-rc5-1cpe:2.3:a:debian:phpbb3:3.0.0-rc5-1:*:*:*:*:*:*:*
debianphpbb33.0.0-rc7-1cpe:2.3:a:debian:phpbb3:3.0.0-rc7-1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
debian	phpbb3	*	cpe:2.3:a:debian:phpbb3::::::::
debian	phpbb3	3.0.0-1	cpe:2.3:a:debian:phpbb3:3.0.0-1:::::::*
debian	phpbb3	3.0.0-2	cpe:2.3:a:debian:phpbb3:3.0.0-2:::::::*
debian	phpbb3	3.0.0-b5	cpe:2.3:a:debian:phpbb3:3.0.0-b5:::::::*
debian	phpbb3	3.0.0-rc1	cpe:2.3:a:debian:phpbb3:3.0.0-rc1:::::::*
debian	phpbb3	3.0.0-rc2-1	cpe:2.3:a:debian:phpbb3:3.0.0-rc2-1:::::::*
debian	phpbb3	3.0.0-rc3-1	cpe:2.3:a:debian:phpbb3:3.0.0-rc3-1:::::::*
debian	phpbb3	3.0.0-rc4-1	cpe:2.3:a:debian:phpbb3:3.0.0-rc4-1:::::::*
debian	phpbb3	3.0.0-rc5-1	cpe:2.3:a:debian:phpbb3:3.0.0-rc5-1:::::::*
debian	phpbb3	3.0.0-rc7-1	cpe:2.3:a:debian:phpbb3:3.0.0-rc7-1:::::::*