privilege escalation for institution admins CVE-2009-3298
Bug #463082 reported by
François Marier
This bug affects 1 person
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
mahara (Ubuntu) |
Fix Released
|
Undecided
|
François Marier | ||
Jaunty |
Fix Released
|
Undecided
|
Unassigned | ||
Karmic |
Fix Released
|
Undecided
|
Unassigned | ||
Lucid |
Fix Released
|
Undecided
|
François Marier |
Bug Description
Binary package hint: mahara
Using an institutional administrator account to reset the password of the global site administrator if the site administrator is a member of the institution.
Changed in mahara (Ubuntu): | |
assignee: | nobody → François Marier (fmarier) |
Changed in mahara (Ubuntu Jaunty): | |
status: | New → In Progress |
Changed in mahara (Ubuntu Karmic): | |
status: | New → In Progress |
Changed in mahara (Ubuntu Lucid): | |
status: | New → Confirmed |
Changed in mahara (Ubuntu Jaunty): | |
status: | Fix Committed → Fix Released |
Changed in mahara (Ubuntu Karmic): | |
status: | Fix Committed → Fix Released |
To post a comment you must log in.
This is now public: http:// web.nvd. nist.gov/ view/vuln/ detail? vulnId= CVE-2009- 3298