SecurityTracker.com
    Home    |    View Topics    |    Search    |    Contact Us    |   

SecurityTracker
Archives


 


Category:   Application (Forum/Board/Portal)  >   vBulletin Vendors:   Jelsoft Enterprises
vBulletin PHP-based Forum Software Has Unspecified Security Flaw in the 'db_mysql.php' Module
SecurityTracker Alert ID:  1004506
SecurityTracker URL:  http://securitytracker.com/id/1004506
CVE Reference:   GENERIC-MAP-NOMATCH   (Links to External Site)
Date:  Jun 11 2002
Impact:   Not specified
Fix Available:  Yes  Vendor Confirmed:  Yes  
Version(s): 2.2.5 and prior versions
Description:   A vulnerability was reported in the vBulletin web forum software. The vendor did not disclose the nature of the vulnerability.

The vendor disclosed that a potential security issue in vBulletin was reported. The flaw resides in db_mysql.php. According to the vendor, the flaw is difficult to exploit. The vendor declined to release any additional details at this time to give users a chance to patch the hole.

[Editor's note: This alert will be updated when we learn of any additional details.]

Impact:   The vendor did not disclose any details regarding the impact of this flaw.
Solution:   The vendor has released a fix (2.2.6), available at:

http://www.vbulletin.com/forum/showthread.php?s=&threadid=45395

Vendor URL:  www.vbulletin.com/ (Links to External Site)
Cause:   Not specified
Underlying OS:  Linux (Any), UNIX (Any), Windows (Any)
Underlying OS Comments:  PHP-based

Message History:   None.


 Source Message Contents

Subject:  vBulletin 2.2.6 minor security fix


  vBulletin 2.2.6
  by John Percival (http://freshmeat.net/users/johnpercival/)
  Monday, June 3rd 2002 16:59

Communications :: BBS
Internet :: WWW/HTTP
Internet :: WWW/HTTP :: Dynamic Content :: Message Boards

About: vBulletin is a customisable forums package. It is based on the
PHP
language with a MySQL back-end database. Key features include a fast
database back end, a template driven interface, a search engine, user
profiles, a web admin area, and unlimited forums/posts.

Changes: A minor security fix and minor bugfixes. 

License: Other/Proprietary License with Source

URL: http://freshmeat.net/projects/vbulletin/



 
 


Go to the Top of This SecurityTracker Archive Page





Home   |    View Topics   |    Search   |    Contact Us

This web site uses cookies for web analytics. Learn More

Copyright 2019, SecurityGlobal.net LLC