CVE-2008-7216

{"id": "CVE-2008-7216", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 4.3, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "MEDIUM", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": true}]}, "published": "2009-09-11T16:30:00.563", "references": [{"url": "http://docs.google.com/View?docid=df36cd52_19xzmkwqcg", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/486331/100/200/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/27287", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39688", "source": "cve@mitre.org"}, {"url": "http://docs.google.com/View?docid=df36cd52_19xzmkwqcg", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/archive/1/486331/100/200/threaded", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "http://www.securityfocus.com/bid/27287", "tags": ["Exploit"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/39688", "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "Peter's Math Anti-Spam Spinoff plugin for WordPress generates audio CAPTCHA clips by concatenating static audio files without any additional distortion, which allows remote attackers to bypass CAPTCHA protection by reading certain bytes from the generated clip."}, {"lang": "es", "value": "La extensi\u00f3n Peter's Math Anti-Spam Spinoff para WordPress genera un clip de audio CAPTCHA concatenando ficheros de audio est\u00e1tico sin distorsiones adicionales, lo que permite a atacantes remotos saltarse la protecci\u00f3n CAPTCHA leyendo los byte concretos del clip generado.\r\n"}], "lastModified": "2024-11-21T00:58:33.927", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:wordpress:peter\\'s_math_anti-spam_for_wordpress:-:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0F50482F-7E89-4B2A-BDA6-43E514C49916"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}