| CVSS Meta Temp Score | Current Exploit Price (≈) | CTI Interest Score |
|---|---|---|
| 7.3 | $0-$5k | 0.00 |
Summary
A vulnerability was found in Simple Machines Forum 1.1.2. It has been declared as problematic. The affected element is an unknown function. Executing a manipulation of the argument PHPSESSID can lead to improper authentication. This vulnerability appears as CVE-2007-2546. There is no available exploit.
Details
A vulnerability classified as critical was found in Simple Machines Forum 1.1.2 (Forum Software). This vulnerability affects some unknown processing. The manipulation of the argument PHPSESSID with an unknown input leads to a improper authentication vulnerability. The CWE definition for the vulnerability is CWE-287. When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct. As an impact it is known to affect confidentiality, integrity, and availability. CVE summarizes:
Session fixation vulnerability in Simple Machines Forum (SMF) 1.1.2 and earlier allows remote attackers to hijack web sessions by setting the PHPSESSID parameter.
The bug was discovered 04/30/2007. The weakness was presented 05/05/2007 by David Vieira-Kurz (Website). The advisory is available at securityfocus.com. This vulnerability was named CVE-2007-2546 since 05/08/2007. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. Technical details are known, but there is no available exploit.
The vulnerability was handled as a non-public zero-day exploit for at least 6 days. During that time the estimated underground price was around $0-$5k.
There is no information about possible countermeasures known. It may be suggested to replace the affected object with an alternative product.
The vulnerability is also documented in the databases at SecurityFocus (BID 24482†), OSVDB (35705†) and Secunia (SA25139†). If you want to get best quality of vulnerability data, you may have to visit VulDB.
Product
Type
Vendor
Name
Version
License
CPE 2.3
CPE 2.2
CVSSv4
VulDB Vector: 🔍VulDB Reliability: 🔍
CVSSv3
VulDB Meta Base Score: 7.3VulDB Meta Temp Score: 7.3
VulDB Base Score: 7.3
VulDB Temp Score: 7.3
VulDB Vector: 🔍
VulDB Reliability: 🔍
CVSSv2
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| 💳 | 💳 | 💳 | 💳 | 💳 | 💳 |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
| Unlock | Unlock | Unlock | Unlock | Unlock | Unlock |
VulDB Base Score: 🔍
VulDB Temp Score: 🔍
VulDB Reliability: 🔍
NVD Base Score: 🔍
Exploiting
Class: Improper authenticationCWE: CWE-287
CAPEC: 🔍
ATT&CK: 🔍
Physical: No
Local: No
Remote: Yes
Availability: 🔍
Status: Not defined
EPSS Score: 🔍
EPSS Percentile: 🔍
Price Prediction: 🔍
Current Price Estimation: 🔍
| 0-Day | Unlock | Unlock | Unlock | Unlock |
|---|---|---|---|---|
| Today | Unlock | Unlock | Unlock | Unlock |
Threat Intelligence
Interest: 🔍Active Actors: 🔍
Active APT Groups: 🔍
Countermeasures
Recommended: no mitigation knownStatus: 🔍
0-Day Time: 🔍
Timeline
04/30/2007 🔍05/05/2007 🔍
05/07/2007 🔍
05/08/2007 🔍
05/09/2007 🔍
06/14/2007 🔍
03/13/2015 🔍
08/30/2018 🔍
Sources
Advisory: securityfocus.com⛔Researcher: David Vieira-Kurz
Status: Not defined
CVE: CVE-2007-2546 (🔍)
GCVE (CVE): GCVE-0-2007-2546
GCVE (VulDB): GCVE-100-36658
SecurityFocus: 24482 - Simple Machines Forum PHPSessionID Session Fixation Vulnerability
Secunia: 25139
OSVDB: 35705 - Simple Machines Forum (SMF) PHPSESSID Session Fixation
Entry
Created: 03/13/2015 14:56Updated: 08/30/2018 08:55
Changes: 03/13/2015 14:56 (52), 08/30/2018 08:55 (6)
Complete: 🔍
Cache ID: 216:706:103
If you want to get best quality of vulnerability data, you may have to visit VulDB.
No comments yet. Languages: en.
Please log in to comment.