DotNetNuke Unspecified Bug Grants Remote Users Access to the Target System
|
|
SecurityTracker Alert ID: 1016332
|
|
SecurityTracker URL: http://securitytracker.com/id?1016332
|
|
CVE Reference: CVE-2006-3601
(Links to External Site)
|
Updated: May 19 2009
|
Original Entry Date: Jun 20 2006
|
Impact: User access via network
|
Description: A vulnerability was reported in DotNetNuke. A remote user can gain privileges on the target system.
This vulnerability was disclosed in an article on Zone-h regarding the Microsoft France web site hack:
http://www.zone-h.org/content/view/4770/31/
[Editor's
note: The vendor has indicated that the vulnerability is in a 3rd party module (DNN Modules) and not in DotNetNuke. This alert
will be updated when additional information becomes available.]
|
Impact: A remote user can gain privileges on the target system.
|
Solution: No solution was available at the time of this entry.
|
Vendor URL: www.dotnetnuke.com/ (Links to External Site)
|
Cause: Not specified
|
Underlying OS: Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 19 Jun 2006 21:51:20 -0400
Subject: DotNetNuke vulnerability
|
http://www.zone-h.org/content/view/4770/31/
.net nuke script vulnerability
|
|
