| OSVDB ID | Disclosure Date | Title |
|---|
|
315
Description:
GBBS Pro contains a flaw that may allow an authenticated user to gain elevated privilges. The issue occurs when a user launches the built in editor and holds down the TAB key, or presses the space bar followed by a CTRL-C. Either set of key sequences will force the editor to abort and leave the user with increased privileges.
|
1987-01-27
|
GBBS Pro Editor Break Privilege Esaclation
|
|
328
Description:
Proving Grounds BBS contains a flaw that may allow a remote attacker to gain SYSOP access. The issue occurs when an attacker connects to the system and provides a crafted login sequence. Due to an error in processing input to the login fields, the system will allow a user that has not provided SYSOP authentication to gain access to the SYSOP menu with equivalent privileges.
|
1987-01-27
|
Proving Grounds BBS Crafted Login Remote Sysop Access
|
|
2084
Description:
GBBS Pro BBS contains a flaw that may allow a user to gain SYSOP privileges. The issue occurs when an unprivileged user reads the userlist and forces a disconnect when it displays the SYSOP. If the user calls back immediately and logs on, they may gain full SYSOP privileges.
|
1987-01-27
|
GBBS Pro BBS Userlist Display Privilege Escalation
|
|
7758
Description:
By default, Major BBS installs with two default accounts. The "sysop" account has a password of "sysop" and the "test" account has a password of "test", both of which are publicly known and documented. This allows attackers to trivially access the program or system.
|
1987-01-01
|
Major BBS Default Account
|
