CVE-2009-3654

Description

Unspecified vulnerability in Boost before 6.x-1.03, a module for Drupal, allows remote attackers to create new webroot directories via unknown attack vectors.

Affected products

• 316solutions / boost6.x-1.01
• 316solutions / boost6.x-1.0 – 6.x-1.0
• 316solutions / boost6.x-1.0 – 6.x-1.0
• 316solutions / boost6.x-1.0-alpha1 – 6.x-1.0-alpha1
• 316solutions / boost6.x-1.0-alpha2 – 6.x-1.0-alpha2
• 316solutions / boost6.x-1.0-alpha3 – 6.x-1.0-alpha3
• 316solutions / boost6.x-1.0-alpha4 – 6.x-1.0-alpha4
• 316solutions / boost6.x-1.0-beta1 – 6.x-1.0-beta1
• 316solutions / boost6.x-1.0-beta2 – 6.x-1.0-beta2
• 316solutions / boost6.x-1.0-rc1 – 6.x-1.0-rc1
• 316solutions / boost6.x-1.0-rc2 – 6.x-1.0-rc2
• 316solutions / boost6.x-1.0-rc3 – 6.x-1.0-rc3
• 316solutions / boost6.x-1.0-rc4 – 6.x-1.0-rc4
• 316solutions / boost6.x-1.0-rc5 – 6.x-1.0-rc5
• 316solutions / boost6.x-1.x-dev – 6.x-1.x-dev

References

• MISChttp://osvdb.org/58424
• MISChttp://drupal.org/node/592470
• MISChttps://exchange.xforce.ibmcloud.com/vulnerabilities/53553
• VENDOR_ADVISORYhttp://secunia.com/advisories/36925
• MISChttp://drupal.org/node/592490
• MISChttp://www.securityfocus.com/bid/36561