CVE-2008-7050

NONECVSS 0.0

0.0

The password_check function in auth/auth_phpbb3.php in WoW Raid Manager 3.5.1 before Patch 1, when using PHPBB3 authentication, (1) does not invoke the CheckPassword function with the required arguments, which always triggers an authentication failure, and (2) returns true instead of false when an authentication failure occurs, which allows remote attackers to bypass authentication and gain privileges with an arbitrary password.

🔗 References (12)

cve@mitrehttp://github.com/Illydth/wowraidmanager/commit/7dd6367ae85003dd5d715431b6ab695f2c2f200a
cve@mitrehttp://secunia.com/advisories/32653
cve@mitrehttp://www.osvdb.org/49704
cve@mitrehttp://www.vupen.com/english/advisories/2008/3109
cve@mitrehttp://www.wowraidmanager.net/e107_plugins/forum/forum_viewtopic.php?2153
cve@mitrehttp://www.wowraidmanager.net/e107_plugins/forum/forum_viewtopic.php?2167
af854a3a-2127-422b-91ae-364da2661108http://github.com/Illydth/wowraidmanager/commit/7dd6367ae85003dd5d715431b6ab695f2c2f200a
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/32653
af854a3a-2127-422b-91ae-364da2661108http://www.osvdb.org/49704
af854a3a-2127-422b-91ae-364da2661108http://www.vupen.com/english/advisories/2008/3109
af854a3a-2127-422b-91ae-364da2661108http://www.wowraidmanager.net/e107_plugins/forum/forum_viewtopic.php?2153
af854a3a-2127-422b-91ae-364da2661108http://www.wowraidmanager.net/e107_plugins/forum/forum_viewtopic.php?2167

Is Your Infrastructure Affected by CVE-2008-7050?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2008-7050

📅 Published

🔄 Last Modified

🔗 References (12)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2008-7050?