CVE-2008-3969

CVE-2008-3969 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:N

Multiple unspecified vulnerabilities in BitlBee before 1.2.3 allow remote attackers to "overwrite" and "hijack" existing accounts via unknown vectors related to "inconsistent handling of the USTATUS_IDENTIFIED state." NOTE: this issue exists because of an incomplete fix for CVE-2008-3920.

Learn more about our Web Application Penetration Testing UK.