Vulnerabilities > CVE-2006-4546 - Remote Security vulnerability in Lyris List Manager 8.95
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Lyris ListManager 8.95 allows remote authenticated users, who have administrative privileges for at least one list on the server, to add new administrators to any list via a modified MEMBERS_.List_ parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2006-08/0817.html
- http://secunia.com/advisories/21698
- http://securityreason.com/securityalert/1502
- http://securitytracker.com/id?1016771
- http://www.securityfocus.com/archive/1/444844/100/0/threaded
- https://exchange.xforce.ibmcloud.com/vulnerabilities/28679