Lucene search
Ubuntu.comUB:CVE-2011-1766HistoryMay 23, 2011 - 12:00 a.m.
CVE-2011-1766
2011-05-2300:00:00
ubuntu.com
ubuntu.com
27
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.018
Percentile
88.1%
includes/User.php in MediaWiki before 1.16.5, when wgBlockDisablesLogin is
enabled, does not clear certain cached data after verification of an auth
token fails, which allows remote attackers to bypass authentication by
creating crafted wikiUserID and wikiUserName cookies, or by leveraging an
unattended workstation.
Related
prion
prion
Authentication flaw
2011-05-23 22:55:00
nvd
nvd
CVE-2011-1766
2011-05-23 22:55:01
cvelist
cvelist
CVE-2011-1766
2011-05-23 22:00:00
debiancve
debiancve
CVE-2011-1766
2011-05-23 22:55:01
cve
cve
CVE-2011-1766
2011-05-23 22:55:01
openvas
openvas
Fedora Update for mediawiki FEDORA-2011-6774
2011-05-23 00:00:00
Fedora Update for mediawiki FEDORA-2011-6774
2011-05-23 00:00:00
Fedora Update for mediawiki FEDORA-2011-6775
2011-05-23 00:00:00
nessus
nessus
Fedora 14 : mediawiki-1.16.5-59.fc14 (2011-6774)
2011-05-23 00:00:00
Fedora 15 : mediawiki-1.16.5-59.fc15 (2011-6781)
2011-05-19 00:00:00
Fedora 13 : mediawiki-1.16.5-59.fc13 (2011-6775)
2011-05-23 00:00:00
fedora
fedora
[SECURITY] Fedora 15 Update: mediawiki-1.16.5-59.fc15
2011-05-19 05:09:45
[SECURITY] Fedora 14 Update: mediawiki-1.16.5-59.fc14
2011-05-20 20:55:43
[SECURITY] Fedora 13 Update: mediawiki-1.16.5-59.fc13
2011-05-20 20:58:01
gentoo
gentoo
MediaWiki: Multiple vulnerabilities
2012-06-21 00:00:00
CVSS2
5.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
EPSS
0.018
Percentile
88.1%
Related for UB:CVE-2011-1766