CVE-2007-6319

Multiple unspecified vulnerabilities in Lyris ListManager 8.x before 8.95d, 9.2 before 9.2c, and 9.3 before 9.3b allow remote attackers to (1) gain list administrator privileges or (2) access arbitrary mailing lists via unknown vectors related to modification of client-side information; and (3) allow remote authenticated administrators to modify other account data by creating "new accounts that collide with existing accounts."
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:lyris:list_manager:8.95:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:8.95a:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:8.95b:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:8.95c:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:9.2:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:9.2a:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:9.2b:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:9.3:*:*:*:*:*:*:*
cpe:2.3:a:lyris:list_manager:9.3a:*:*:*:*:*:*:*

History

21 Nov 2024, 00:39

Type Values Removed Values Added
References () http://secunia.com/advisories/29019 - () http://secunia.com/advisories/29019 -
References () http://securityreason.com/securityalert/3671 - () http://securityreason.com/securityalert/3671 -
References () http://securitytracker.com/id?1019436 - () http://securitytracker.com/id?1019436 -
References () http://www.securityfocus.com/archive/1/488343/100/0/threaded - () http://www.securityfocus.com/archive/1/488343/100/0/threaded -
References () http://www.securityfocus.com/bid/26792 - Patch () http://www.securityfocus.com/bid/26792 - Patch
References () http://www.vupen.com/english/advisories/2008/0618 - () http://www.vupen.com/english/advisories/2008/0618 -

Information

Published : 2008-02-19 22:44

Updated : 2024-11-21 00:39


NVD link : CVE-2007-6319

Mitre link : CVE-2007-6319

CVE.ORG link : CVE-2007-6319


JSON object : View

Products Affected

lyris

  • list_manager
CWE
CWE-264

Permissions, Privileges, and Access Controls

NVD-CWE-noinfo