BitlBee Unspecified Security Bypass Vulnerability
BID:30858
Info
BitlBee Unspecified Security Bypass Vulnerability
| Bugtraq ID: | 30858 |
| Class: | Design Error |
| CVE: |
CVE-2008-3920 |
| Remote: | Yes |
| Local: | No |
| Published: | Aug 26 2008 12:00AM |
| Updated: | Apr 13 2015 09:13PM |
| Credit: | BitlBee |
| Vulnerable: |
Gentoo Linux BitlBee BitlBee 1.2.1 BitlBee BitlBee 1.2 |
| Not Vulnerable: |
BitlBee BitlBee 1.2.2 |
Discussion
BitlBee Unspecified Security Bypass Vulnerability
BitlBee is prone to an unspecified security-bypass vulnerability.
Successfully exploiting this issue may allow attackers to recreate or hijack user accounts on the system. Gaining access to these accounts may aid in further attacks.
Versions prior to BitlBee 1.2.2 are vulnerable.
BitlBee is prone to an unspecified security-bypass vulnerability.
Successfully exploiting this issue may allow attackers to recreate or hijack user accounts on the system. Gaining access to these accounts may aid in further attacks.
Versions prior to BitlBee 1.2.2 are vulnerable.
Exploit / POC
BitlBee Unspecified Security Bypass Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
BitlBee Unspecified Security Bypass Vulnerability
Solution:
The vendor has released updates and an advisory. Please see the references for more information.
Solution:
The vendor has released updates and an advisory. Please see the references for more information.
References
BitlBee Unspecified Security Bypass Vulnerability
References:
References:
- BitlBee Change Log (BitlBee)
- BitlBee Homepage (BitlBee)