CVE-2012-4328

Unspecified vulnerability in the MAPI in vBulletin Suite 4.1.2 through 4.1.12, Forum 4.1.2 through 4.1.12, and the MAPI plugin 1.4.3 for vBulletin 3.x has unknown impact and attack vectors.

CVSS v2.0 10.0 HIGH

10.0^/10

CVSS v2.0 : HIGH

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References

Link	Resource
http://osvdb.org/81474
http://secunia.com/advisories/48917	Vendor Advisory
http://www.securityfocus.com/bid/53226
https://exchange.xforce.ibmcloud.com/vulnerabilities/75160
https://www.vbulletin.com/forum/showthread.php/400162-vBulletin-3-x-MAPI-Plugin-1-4-3-released-with-security-patch-04-23-2012	Vendor Advisory
https://www.vbulletin.com/forum/showthread.php/400164-vBulletin-Security-Patch-for-vBulletin-4-1-2-4-1-11-for-Suite-amp-Forum-04-23-2012	Vendor Advisory
https://www.vbulletin.com/forum/showthread.php/400165-vBulletin-Security-Patch-for-vBulletin-4-1-12-for-Suite-amp-Forum-04-23-2012	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

OR	cpe:2.3:a:vbulletin:mapi:1.4.3:::::::*
	cpe:2.3:a:vbulletin:vbulletin_forum:4.1.2:::::::*
	cpe:2.3:a:vbulletin:vbulletin_forum:4.1.12:::::::*
	cpe:2.3:a:vbulletin:vbulletin_suite:4.1.2:::::::*
	cpe:2.3:a:vbulletin:vbulletin_suite:4.1.12:::::::*

OR	cpe:2.3:a:vbulletin:vbulletin:3.0:::::::*
	cpe:2.3:a:vbulletin:vbulletin:3.5:::::::*
	cpe:2.3:a:vbulletin:vbulletin:3.6:::::::*
	cpe:2.3:a:vbulletin:vbulletin:3.7:::::::*

History

No history.

Information

Published : 2012-08-14 22:55

Updated : 2017-08-29 01:32

NVD link : CVE-2012-4328

Mitre link : CVE-2012-4328

CVE.ORG link : CVE-2012-4328

JSON object : View

Products Affected

vbulletin

vbulletin_forum
vbulletin
mapi
vbulletin_suite

CWE

NVD-CWE-noinfo

{"id": "CVE-2012-4328", "cveTags": [], "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 10.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C", "authentication": "NONE", "integrityImpact": "COMPLETE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "COMPLETE"}, "acInsufInfo": true, "impactScore": 10.0, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}]}, "published": "2012-08-14T22:55:02.237", "references": [{"url": "http://osvdb.org/81474", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/48917", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/53226", "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/75160", "source": "cve@mitre.org"}, {"url": "https://www.vbulletin.com/forum/showthread.php/400162-vBulletin-3-x-MAPI-Plugin-1-4-3-released-with-security-patch-04-23-2012", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.vbulletin.com/forum/showthread.php/400164-vBulletin-Security-Patch-for-vBulletin-4-1-2-4-1-11-for-Suite-amp-Forum-04-23-2012", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "https://www.vbulletin.com/forum/showthread.php/400165-vBulletin-Security-Patch-for-vBulletin-4-1-12-for-Suite-amp-Forum-04-23-2012", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-noinfo"}]}], "descriptions": [{"lang": "en", "value": "Unspecified vulnerability in the MAPI in vBulletin Suite 4.1.2 through 4.1.12, Forum 4.1.2 through 4.1.12, and the MAPI plugin 1.4.3 for vBulletin 3.x has unknown impact and attack vectors."}, {"lang": "es", "value": "Una vulnerabilidad no especificada en MAPI en vBulletin Suite v4.1.2 a v4.1.12, Forum v4.1.2 a 4.1.12, y el plugin MAPI v1.4.3 para vBulletin v3.x tiene un impacto y vectores de ataque desconocidos.\r\n"}], "lastModified": "2017-08-29T01:32:16.167", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vbulletin:mapi:1.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4781F2FA-A90D-461E-94DF-88DCA830C1A4"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin_forum:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E82909C9-AC74-4D7D-8F93-C9947E77C9EF"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin_forum:4.1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B8C42E64-5DF0-42B7-84E0-BD7CD71C3CE4"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin_suite:4.1.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "66BAD396-452E-49AC-B872-B80CFD9FB54A"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin_suite:4.1.12:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EDF93523-888B-452B-A4A7-DD12CE1E9881"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:vbulletin:vbulletin:3.0:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "568487F7-E8EB-4E34-BF46-635F479E8DA2"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin:3.5:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2097EC7D-85C5-43FE-9DBB-D0FFA98F2FF0"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin:3.6:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "75BAA1A3-CA91-402B-8CFE-01778E27B318"}, {"criteria": "cpe:2.3:a:vbulletin:vbulletin:3.7:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E978A0EB-E14B-4930-8AEC-30F64E9A7D69"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}