CVE-2008-6844

Publication date 2 July 2009

Last updated 24 July 2024

Ubuntu priority

The registration view (/user/register) in eZ Publish 3.5.6 and earlier, and possibly other versions before 3.9.5, 3.10.1, and 4.0.1, allows remote attackers to gain privileges as other users via modified ContentObjectAttribute_data_user_login_30, ContentObjectAttribute_data_user_password_30, and other parameters.

Read the notes from the security team

Status

Show unmaintained releases

No maintained releases are affected by this CVE.

Package	Ubuntu Release	Status
ezpublish	9.10 karmic	Not in release
	9.04 jaunty	Not in release
	8.10 intrepid	Not in release
	8.04 LTS hardy	Not in release
	6.06 LTS dapper	Ignored end of life

How can I get the fixes?
What do statuses mean?

Notes

mdeslaur

PoC: http://www.milw0rm.com/exploits/7406

References

MITRE
NVD
Launchpad
Debian

Other references

http://ez.no/developer/security/security_advisories/ez_publish_4_0/ezsa_2008_003_insufficient_form_handling_made_privilege_escalation_possible
https://www.cve.org/CVERecord?id=CVE-2008-6844