{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2008-05-01T00:00:00", "descriptions": [{"lang": "en", "value": "Robin Rawson-Tetley Animal Shelter Manager (ASM) before 2.2.2 does not properly enforce the privileges of user accounts, which allows local users to bypass intended access restrictions by (1) opening unspecified screens, related to the \"double click selector bug\"; or modifying a (2) animal, (3) owner, (4) lost/found, (5) diary note, (6) owner donation, or (7) waiting list record, related to \"change permissions\" and the \"new UI.\""}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2017-08-07T12:57:01", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "asm-unspecified-security-bypass(42139)", "tags": ["vdb-entry", "x_refsource_XF"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42139"}, {"name": "30041", "tags": ["third-party-advisory", "x_refsource_SECUNIA"], "url": "http://secunia.com/advisories/30041"}, {"tags": ["x_refsource_CONFIRM"], "url": "http://sourceforge.net/project/shownotes.php?group_id=82533&release_id=596220"}, {"name": "29022", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/29022"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2008-6109", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Robin Rawson-Tetley Animal Shelter Manager (ASM) before 2.2.2 does not properly enforce the privileges of user accounts, which allows local users to bypass intended access restrictions by (1) opening unspecified screens, related to the \"double click selector bug\"; or modifying a (2) animal, (3) owner, (4) lost/found, (5) diary note, (6) owner donation, or (7) waiting list record, related to \"change permissions\" and the \"new UI.\""}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "asm-unspecified-security-bypass(42139)", "refsource": "XF", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42139"}, {"name": "30041", "refsource": "SECUNIA", "url": "http://secunia.com/advisories/30041"}, {"name": "http://sourceforge.net/project/shownotes.php?group_id=82533&release_id=596220", "refsource": "CONFIRM", "url": "http://sourceforge.net/project/shownotes.php?group_id=82533&release_id=596220"}, {"name": "29022", "refsource": "BID", "url": "http://www.securityfocus.com/bid/29022"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T11:20:25.087Z"}, "title": "CVE Program Container", "references": [{"name": "asm-unspecified-security-bypass(42139)", "tags": ["vdb-entry", "x_refsource_XF", "x_transferred"], "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42139"}, {"name": "30041", "tags": ["third-party-advisory", "x_refsource_SECUNIA", "x_transferred"], "url": "http://secunia.com/advisories/30041"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://sourceforge.net/project/shownotes.php?group_id=82533&release_id=596220"}, {"name": "29022", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/29022"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2008-6109", "datePublished": "2009-02-11T00:00:00", "dateReserved": "2009-02-10T00:00:00", "dateUpdated": "2024-08-07T11:20:25.087Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:*:*:*:*:*:*:*:*", "matchCriteriaId": "E5A0E53D-7AD6-40F4-962C-7D0B765D529D", "versionEndIncluding": "2.2.1", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.1:*:*:*:*:*:*:*", "matchCriteriaId": "5B3C772C-E108-4336-8377-F12E96097F52", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.3:*:*:*:*:*:*:*", "matchCriteriaId": "0187FA02-69E5-49C6-95DB-85A827E1B517", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.11:*:*:*:*:*:*:*", "matchCriteriaId": "1A5F4AB0-24CD-4AF6-A967-765918E835AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.12:*:*:*:*:*:*:*", "matchCriteriaId": "58C72FBB-A860-4EE5-A3D9-68E0A1C7F789", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.20:*:*:*:*:*:*:*", "matchCriteriaId": "B154ECE6-0CB4-42B8-8B4D-AC0E63490B51", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.22:*:*:*:*:*:*:*", "matchCriteriaId": "67E1A926-8C16-489A-9D3D-B53B3BD00DDE", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.30:*:*:*:*:*:*:*", "matchCriteriaId": "F1D03D82-12A9-404A-B905-5075F2A64E78", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.30.1:*:*:*:*:*:*:*", "matchCriteriaId": "5A374254-A812-4EDB-A40F-5A2F2B13A0C3", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.30.2:*:*:*:*:*:*:*", "matchCriteriaId": "04B39BD3-3C21-48D5-8D76-CC8E4413F219", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.30_beta:*:*:*:*:*:*:*", "matchCriteriaId": "2709633D-7249-434A-B399-2A885EF5AC77", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.31:*:*:*:*:*:*:*", "matchCriteriaId": "FB478882-0319-448E-BBCC-B05CD26138A4", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.32:*:*:*:*:*:*:*", "matchCriteriaId": "AE3447F5-228E-46F2-BDAF-73617E649809", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.33:*:*:*:*:*:*:*", "matchCriteriaId": "FD21A6AF-7DE1-450E-96A9-16BD6DD390AE", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.34:*:*:*:*:*:*:*", "matchCriteriaId": "0E074718-259F-4A74-AEEE-4F515299D4B6", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.35:*:*:*:*:*:*:*", "matchCriteriaId": "F1C3A310-8CA2-4CAA-BF3C-0F270CD7B3F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.36:*:*:*:*:*:*:*", "matchCriteriaId": "9E7AAFA3-29E1-4C80-95F1-7C837D1C6ADC", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.37:*:*:*:*:*:*:*", "matchCriteriaId": "B5F67A73-30C4-4D05-B078-3DC3DCD6B989", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.38:*:*:*:*:*:*:*", "matchCriteriaId": "DCF9D5B3-542A-4A3F-822F-C5B0B137F814", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.39:*:*:*:*:*:*:*", "matchCriteriaId": "B42CF675-826D-4108-A6C5-9858B69B1E95", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:1.40:*:*:*:*:*:*:*", "matchCriteriaId": "A6B65828-3876-4173-94FA-52E3129759AF", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.1:*:*:*:*:*:*:*", "matchCriteriaId": "2EE12865-F9F4-4232-A0AA-1FE272D475F9", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.2:*:*:*:*:*:*:*", "matchCriteriaId": "C2443110-53F3-4BD3-B54E-9593B8C972FD", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.6:*:*:*:*:*:*:*", "matchCriteriaId": "479C9000-2206-4F23-A570-D26D01D664A0", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.8:*:*:*:*:*:*:*", "matchCriteriaId": "F31F320A-FF20-48C2-9DE1-C09B0DC1FCF5", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.14:*:*:*:*:*:*:*", "matchCriteriaId": "A14D6C86-5912-4B68-9FDB-D4B448F2556C", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.15:*:*:*:*:*:*:*", "matchCriteriaId": "27EA78FF-DB1C-430B-B453-20105FD3C2FE", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.16:*:*:*:*:*:*:*", "matchCriteriaId": "D5442F6C-741C-4C31-8033-2C26867CE35C", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.17:*:*:*:*:*:*:*", "matchCriteriaId": "2C74338C-EF04-4F9E-AB91-1650D16B8BF8", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.18:*:*:*:*:*:*:*", "matchCriteriaId": "6ED71A13-6477-4A08-9DE5-B135BA3E2A40", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.21:*:*:*:*:*:*:*", "matchCriteriaId": "F58E05A2-C443-4415-98B3-821AF04B7E10", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.0.22:*:*:*:*:*:*:*", "matchCriteriaId": "3E1298C5-5B3B-43A0-863E-215B52716227", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.1.0:*:*:*:*:*:*:*", "matchCriteriaId": "BD9F86A2-A440-4762-B26F-385A5A9EEF48", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.1.1:*:*:*:*:*:*:*", "matchCriteriaId": "11046732-02B9-4ABB-8CF0-8B2DEA697E17", "vulnerable": true}, {"criteria": "cpe:2.3:a:shelter_manager:animal_shelter_manager:2.2.0:*:*:*:*:*:*:*", "matchCriteriaId": "CDEF7261-C6D8-429D-80D0-99D7BDF704E2", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Robin Rawson-Tetley Animal Shelter Manager (ASM) before 2.2.2 does not properly enforce the privileges of user accounts, which allows local users to bypass intended access restrictions by (1) opening unspecified screens, related to the \"double click selector bug\"; or modifying a (2) animal, (3) owner, (4) lost/found, (5) diary note, (6) owner donation, or (7) waiting list record, related to \"change permissions\" and the \"new UI.\""}, {"lang": "es", "value": "Robin Rawson-Tetley Animal Shelter Manager (ASM) anteriores a v2.2.2 no respeta los privilegios de las cuentas de usuario, lo que permite a usuarios locales evitar las restricciones de acceso previstas mediante (1)la apertura de ventanas inespec\u00edficas, relacionado con el error \"selector doble click\"; o mediante la modificaci\u00f3n de un (2) animal, (3) propietario, (4) perdido/encontrado, (5)notas diarias, (6) donaci\u00f3n de propietario, o (7) registro de lista de espera, relacionado con los \"cambios de permisos\" y la \"nueva interfaz de usuario\"."}], "id": "CVE-2008-6109", "lastModified": "2025-04-09T00:30:58.490", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "LOCAL", "authentication": "NONE", "availabilityImpact": "PARTIAL", "baseScore": 4.6, "confidentialityImpact": "PARTIAL", "integrityImpact": "PARTIAL", "vectorString": "AV:L/AC:L/Au:N/C:P/I:P/A:P", "version": "2.0"}, "exploitabilityScore": 3.9, "impactScore": 6.4, "obtainAllPrivilege": false, "obtainOtherPrivilege": true, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2009-02-11T00:30:00.203", "references": [{"source": "cve@mitre.org", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30041"}, {"source": "cve@mitre.org", "url": "http://sourceforge.net/project/shownotes.php?group_id=82533&release_id=596220"}, {"source": "cve@mitre.org", "url": "http://www.securityfocus.com/bid/29022"}, {"source": "cve@mitre.org", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42139"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://secunia.com/advisories/30041"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://sourceforge.net/project/shownotes.php?group_id=82533&release_id=596220"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/29022"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/42139"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{}

{}