YaBB Image Upload HTML Injection Vulnerability

Bugtraq ID: 15368
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: Nov 09 2005 12:00AM
Updated: Nov 09 2005 12:00AM
Credit: The discoverer of this vulnerability is currently unknown, the vendor disclosed this issue.
Vulnerable: YaBB YaBB 2.0 RC1
YaBB YaBB 2.0 RC2
YaBB YaBB 2.0
YaBB YaBB 1.41
YaBB YaBB 1.40
YaBB YaBB 1 Gold Release
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional
- Microsoft Windows 95
- Microsoft Windows 98
- Microsoft Windows NT 4.0 SP6a
- Microsoft Windows NT 4.0 SP6
- Microsoft Windows NT 4.0 SP5
- Microsoft Windows NT 4.0 SP4
- Microsoft Windows NT 4.0 SP3
- Microsoft Windows NT 4.0 SP2
- Microsoft Windows NT 4.0 SP1
- Microsoft Windows NT 4.0
YaBB YaBB 1 Gold - SP 1.4
YaBB YaBB 1 Gold - SP 1.3.2
YaBB YaBB 1 Gold - SP 1.3.1
YaBB YaBB 1 Gold - SP 1.3
YaBB YaBB 1 Gold - SP 1.2
YaBB YaBB 1 Gold - SP 1
- Apache Apache 1.3.22
- Apache Apache 1.3.20
- Apache Apache 1.3.20
- Apache Apache 1.3.19
- Apache Apache 1.3.19
- Apache Apache 1.3.18
- Apache Apache 1.3.18
- Apache Apache 1.3.17
- Apache Apache 1.3.17
- Microsoft IIS 5.0
- Microsoft IIS 4.0
- Omnicron OmniHTTPD 2.4 Pro
Not Vulnerable: YaBB YaBB 2.1


 

Privacy Statement
Copyright 2010, SecurityFocus