Vulnerabilities > CVE-2006-0866 - Remote Security vulnerability in Punbb

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

NONE

Availability impact

NONE

network

low complexity

punbb

NVD

Published: 2006-02-23

Updated: 2018-10-18

Summary

PunBB 1.2.10 and earlier allows remote attackers to conduct brute force guessing attacks for an account's password, which may be as short as 4 characters.

Vulnerable Configurations

Part	Description	Count
Application	Punbb Punbb Punbb 1.0 Punbb Punbb 1.0.1 Punbb Punbb 1.0_Alpha Punbb Punbb 1.0_Beta1 Punbb Punbb 1.0_Beta1A Punbb Punbb 1.0_Beta2 Punbb Punbb 1.0_Beta3 Punbb Punbb 1.0_Rc1 Punbb Punbb 1.0_Rc2 Punbb Punbb 1.1 Punbb Punbb 1.1.1 Punbb Punbb 1.1.2 Punbb Punbb 1.1.3 Punbb Punbb 1.1.4 Punbb Punbb 1.1.5 Punbb Punbb 1.2 Punbb Punbb 1.2.1 Punbb Punbb 1.2.2 Punbb Punbb 1.2.3 Punbb Punbb 1.2.4 Punbb Punbb 1.2.5 Punbb Punbb 1.2.6 Punbb Punbb 1.2.7 Punbb Punbb 1.2.8 Punbb Punbb 1.2.9 Punbb Punbb 1.2.10	26

Summary

Vulnerable Configurations

References