Vulnerabilities > CVE-2006-0511 - Unspecified vulnerability in Blackboard and Blackboard Academic Suite

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

blackboard

NVD

Published: 2006-02-01

Updated: 2024-04-11

Summary

Blackboard Academic Suite 6.0 and earlier does not properly clear session information when de-authenticating a user who is idle, which allows subsequent users to log in as the previous user and gain privileges. NOTE: the vendor has disputed this issue, saying that "This is a customer specific issue related to their Kerberos authentication single sign-on application and not a vulnerability in the Blackboard product.

Vulnerable Configurations

Part	Description	Count
Application	Blackboard Blackboard Blackboard 5.0.2 Blackboard Blackboard 6.0 Blackboard Blackboard 5.5 Blackboard Blackboard 5.5.1 Blackboard Blackboard 5.0 Blackboard Blackboard Academic Suite 6.0	6

Summary

Vulnerable Configurations

References