CVE-2008-2134

Published: May 9, 2008Modified: Apr 23, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

The Journal module in Tru-Zone Nuke ET 3.x allows remote attackers to obtain access to arbitrary user accounts, and alter or delete data, via a modified username in an unspecified cookie.

Affected (6)

Products: Tru Zone: Nukeet

1 product

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Tru Zone Nukeet	Version 3.0
Tru Zone Nukeet	Version 3.1
Tru Zone Nukeet	Version 3.2
Tru Zone Nukeet	Version 3.3
Tru Zone Nukeet	Version 3.4
Tru Zone Nukeet	Version 3.9

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (10)

http://secunia.com/advisories/30061

Source: cve@mitre.org

Vendor Advisory

http://truzone.org/modules.php?name=Forums&file=viewtopic&p=332746

Source: cve@mitre.org

Patch

http://www.mrzayas.es/2008/05/04/multiples-vulnerabilidades-en-nuket-3x/

Source: cve@mitre.org

http://www.securityfocus.com/bid/29080

Source: cve@mitre.org

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/42239

Source: cve@mitre.org

http://secunia.com/advisories/30061

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://truzone.org/modules.php?name=Forums&file=viewtopic&p=332746

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

http://www.mrzayas.es/2008/05/04/multiples-vulnerabilidades-en-nuket-3x/

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/29080

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://exchange.xforce.ibmcloud.com/vulnerabilities/42239

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.