CVE-2009-1596

MEDIUM6.5Auth bypass

Description

Ignite Realtime Openfire before 3.6.5 does not properly implement the register.password (aka canChangePassword) console configuration setting, which allows remote authenticated users to bypass intended policy and change their own passwords via a passwd_change IQ packet.

CVSS breakdown

CVSS 3.1

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

High

Availability

None

Affected products

igniterealtime / Openfire3.6.5

References

MISChttp://www.igniterealtime.org/community/message/190280
MISChttp://www.igniterealtime.org/issues/browse/JM-1532
VENDOR_ADVISORYhttp://secunia.com/advisories/34984
MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/50291
MISChttp://www.securityfocus.com/bid/34804
MISChttp://www.osvdb.org/54189