CVE Vulnerabilities

CVE-2007-1788

Published: Mar 31, 2007 | Modified: Mar 08, 2011
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu
UNTRIAGED

Flyspray 0.9.9, when output_buffering is disabled or set to a low value, allows remote attackers to bypass authentication via a crafted post request.

Affected Software

Name Vendor Start Version End Version
Flyspray Flyspray 0.9.9 (including) 0.9.9 (including)
Flyspray Ubuntu dapper *
Flyspray Ubuntu edgy *
Flyspray Ubuntu feisty *
Flyspray Ubuntu gutsy *

References