• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Invision Power Board Insecure Permissions Vulnerability

Invision Power Board has been reported prone to a configuration issue that could allow attackers with local interactive access to modify Invision Power Board source files. The issue has been reported to present itself because Invision Power Board does not correctly set permissions on folders during the installation process. Any local user who is a member of the same group as Invision Power Board may make modifications to Invision Power Board source files.