CVE-2008-6399

EUVD-2008-6369
Unspecified vulnerability in DotNetNuke 4.5.2 through 4.9 allows remote attackers to "add additional roles to their user account" via unknown attack vectors.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.4 UNKNOWN
NETWORK
LOW
AV:N/AC:L/Au:N/C:P/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 60%
Affected Products (NVD)
VendorProductVersion
dotnetnukedotnetnuke
4.5.2
dotnetnukedotnetnuke
4.8.1
dotnetnukedotnetnuke
4.8.2
dotnetnukedotnetnuke
4.8.3
dotnetnukedotnetnuke
4.8.4
dotnetnukedotnetnuke
4.9
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://osvdb.org/51141
http://secunia.com/advisories/33401
http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno24/tabid/1188/Default.aspx
http://www.securityfocus.com/bid/33109
http://osvdb.org/51141
http://secunia.com/advisories/33401
http://www.dotnetnuke.com/News/SecurityPolicy/Securitybulletinno24/tabid/1188/Default.aspx
http://www.securityfocus.com/bid/33109