CVE-2008-2044

CVSS V2 High 7.5 CVSS V3 None
Description
includes/library.php in netOffice Dwins 1.3 p2 compares the demoSession variable to the 'true' string literal instead of the true boolean literal, which allows remote attackers to bypass authentication and execute arbitrary code by setting this variable to 1, as demonstrated by uploading a PHP script via an add action to projects_site/uploadfile.php.
Overview
  • CVE ID
  • CVE-2008-2044
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Modified
  • Published Version
  • 2008-05-01T19:05:00
  • Last Modified Date
  • 2018-10-11T20:38:52
Weakness Enumerations
CWE URL
CWE-94 http://cwe.mitre.org/data/definitions/94.html
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:netoffice:dwins:1.3:*:*:*:*:*:*:* 1 OR
CVSS Version 2
  • Version
  • 2.0
  • Vector String
  • AV:N/AC:L/Au:N/C:P/I:P/A:P
  • Access Vector
  • NETWORK
  • Access Compatibility
  • LOW
  • Authentication
  • NONE
  • Confidentiality Impact
  • PARTIAL
  • Integrity Impact
  • PARTIAL
  • Availability Impact
  • PARTIAL
  • Base Score
  • 7.5
  • Severity
  • HIGH
  • Exploitability Score
  • 10
  • Impact Score
  • 6.4
References
Reference URL Reference Tags
http://www.securityfocus.com/archive/1/488958 Exploit
http://sourceforge.net/forum/forum.php?forum_id=814851
http://www.securityfocus.com/bid/28051
http://securityreason.com/securityalert/3845
http://netofficedwins.sourceforge.net/modules/news/article.php?storyid=47
http://secunia.com/advisories/29193
http://www.securityfocus.com/archive/1/491542/100/0/threaded
Sources
Source Name Source URL
NIST https://nvd.nist.gov/vuln/detail/CVE-2008-2044
MITRE https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2044
History
Created Old Value New Value Data Type Notes
2022-05-10 18:29:04 Added to TrackCVE