← Back

CVE-2006-0511

nvd nist
Published: Feb 1, 2006Modified: Apr 16, 2026

JSON object

Loading...
4.3
Vector
AV:L/AC:L/Au:S/C:P/I:P/A:P
Exploitability: 3.1 / Impact: 6.4
Source: NVD

Description

Blackboard Academic Suite 6.0 and earlier does not properly clear session information when de-authenticating a user who is idle, which allows subsequent users to log in as the previous user and gain privileges. NOTE: the vendor has disputed this issue, saying that "This is a customer specific issue related to their Kerberos authentication single sign-on application and not a vulnerability in the Blackboard product.

Affected (6)

Blackboard
2 products
Blackboard
Blackboard Academic Suite
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Blackboard
Blackboard
Version 5.0.2
Blackboard
Version 5.0
Blackboard
Version 5.5.1
Blackboard
Version 5.5
Blackboard
Version 6.0
Blackboard Academic Suite
Version 6.0

References (10)

Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.