|
|
CVE Reference: CVE-2008-4106 |
|
| NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE. | |
|
Original Page at CVE MITRE: CVE-2008-4106 |
|
|
Description: WordPress before 2.6.2 does not properly handle MySQL warnings about insertion of username strings that exceed the maximum column width of the user_login column, and does not properly handle space characters when comparing usernames, which allows remote attackers to change an arbitrary user's password to a random value by registering a similar username and then requesting a password reset, related to a "SQL column truncation vulnerability." NOTE: the attacker can discover the random password by also exploiting CVE-2008-4107. |
|
|
CVE Status: Candidate |
|
|
References: ST 1020869 SREASON http://securityreason.com/securityalert/4272 SAID Secunia Advisory: SA31737 Secunia Advisory: SA31870 MLIST http://marc.info/?l=oss-security&m=122152830017099&w=2 http://www.openwall.com/lists/oss-security/2008/09/11/6 MISC http://www.sektioneins.de/advisories/SE-2008-05.txt http://www.suspekt.org/2008/08/18/mysql-and-sql-column-truncation-vulnerabilities/ MILW0RM http://www.milw0rm.com/exploits/6421 http://www.milw0rm.com/exploits/6397 FEDORA DEBIAN http://www.debian.org/security/2009/dsa-1871 CONFIRM http://wordpress.org/development/2008/09/wordpress-262/ BUGTRAQ http://www.securityfocus.com/archive/1/archive/1/496287/100/0/threaded BID 31068 |
|
| Return to the previous page. |
