CVE-2008-3268

Description

Unspecified vulnerability in phpScheduleIt 1.2.0 through 1.2.9, when useLogonName is enabled, allows remote attackers with administrator email address knowledge to bypass restrictions and gain privileges via unspecified vectors related to login names. NOTE: some of these details are obtained from third party information.

Affected products

• brickhost / phpscheduleit1.2.0 – 1.2.0
• brickhost / phpscheduleit1.2.0 – 1.2.0
• brickhost / phpscheduleit1.2.0 – 1.2.0
• brickhost / phpscheduleit1.2.1 – 1.2.1
• brickhost / phpscheduleit1.2.2 – 1.2.2
• brickhost / phpscheduleit1.2.3 – 1.2.3
• brickhost / phpscheduleit1.2.4 – 1.2.4
• brickhost / phpscheduleit1.2.5 – 1.2.5
• brickhost / phpscheduleit1.2.6 – 1.2.6
• brickhost / phpscheduleit1.2.7 – 1.2.7
• brickhost / phpscheduleit1.2.9 – 1.2.9

References

• MISChttp://sourceforge.net/project/shownotes.php?release_id=614202
• MISChttp://www.securityfocus.com/bid/30300
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/43900
• VENDOR_ADVISORYhttp://secunia.com/advisories/31147