DotNetNuke Unspecified Bug Grants Remote Users Access to the Target System
|
|
SecurityTracker Alert ID: 1016332 |
|
SecurityTracker URL: http://securitytracker.com/id/1016332
|
|
CVE Reference:
CVE-2006-3601
(Links to External Site)
|
Updated: May 19 2009
|
Original Entry Date: Jun 20 2006
|
Impact:
User access via network
|
|
|
Description:
A vulnerability was reported in DotNetNuke. A remote user can gain privileges on the target system.
This vulnerability was disclosed in an article on Zone-h regarding the Microsoft France web site hack:
http://www.zone-h.org/content/view/4770/31/
[Editor's note: The vendor has indicated that the vulnerability is in a 3rd party module (DNN Modules) and not in DotNetNuke. This alert will be updated when additional information becomes available.]
|
Impact:
A remote user can gain privileges on the target system.
|
Solution:
No solution was available at the time of this entry.
|
Vendor URL: www.dotnetnuke.com/ (Links to External Site)
|
Cause:
Not specified
|
Underlying OS:
Linux (Any), UNIX (Any), Windows (Any)
|
|
Message History:
None.
|
Source Message Contents
|
Date: Mon, 19 Jun 2006 21:51:20 -0400
Subject: DotNetNuke vulnerability
|
http://www.zone-h.org/content/view/4770/31/
.net nuke script vulnerability
|
|
