{"vuid":"VU#236703","idnumber":"236703","name":"ActiveCollab permissions failure","keywords":["ActiveCollab","authentication","permissions"],"overview":"An authenticated user can view and delete projects or files that they are not assigned to.","clean_desc":"An authenticated user with no permission to a project can subscribe to the project, delete files, and possibly take other actions by loading a specifically crafted URL. Specific fields for the URL would most likely not be known to the attacker but a brute force attack could still be used to try all possibilities. ActiveCollab 2.3.1 is known to be vulnerable. Earlier versions may be vulnerable as well.","impact":"An authenticated attacker could view or modify projects they are not assigned to, resulting in loss of data integrity and confidentiality. An unauthenticated attacker may use a cross-site request forgery (XSRF) attack to trick an authenticated user into visiting a specifically crafted malicious URL as well.","resolution":"Upgrade to ActiveCollab 2.3.2 or newer.","workarounds":"","sysaffected":"","thanks":"Thanks to Robin Wood for reporting this vulnerability.","author":"This document was written by Jared Allar.","public":["http://www.activecollab.com/news/activecollab-2-3-2-is-available-for-download/","http://www.activecollab.com/docs/manuals/admin/release-notes/activecollab-2-3-2"],"cveids":["CVE-2010-0215"],"certadvisory":"","uscerttechnicalalert":null,"datecreated":"2010-08-18T15:03:47Z","publicdate":"2010-10-04T00:00:00Z","datefirstpublished":"2010-10-04T11:41:11Z","dateupdated":"2010-10-04T12:42:21Z","revision":25,"vrda_d1_directreport":"1","vrda_d1_population":"2","vrda_d1_impact":"2","cam_widelyknown":"1","cam_exploitation":"0","cam_internetinfrastructure":"0","cam_population":"1","cam_impact":"8","cam_easeofexploitation":"2","cam_attackeraccessrequired":"10","cam_scorecurrent":"0.003","cam_scorecurrentwidelyknown":"0.06","cam_scorecurrentwidelyknownexploited":"0.12","ipprotocol":"","cvss_accessvector":"","cvss_accesscomplexity":"","cvss_authentication":null,"cvss_confidentialityimpact":"","cvss_integrityimpact":"","cvss_availabilityimpact":"","cvss_exploitablity":null,"cvss_remediationlevel":"","cvss_reportconfidence":"","cvss_collateraldamagepotential":"","cvss_targetdistribution":"","cvss_securityrequirementscr":"","cvss_securityrequirementsir":"","cvss_securityrequirementsar":"","cvss_basescore":"","cvss_basevector":"","cvss_temporalscore":"","cvss_environmentalscore":"","cvss_environmentalvector":"","metric":0.003,"vulnote":null}