PublicDate: 2005-11-01 21:02:00 UTC
Candidate: CVE-2005-3417
References:
 https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2005-3417
Description:
 phpBB 2.0.17 and earlier, when the register_long_arrays directive is
 disabled, allows remote attackers to modify global variables and bypass
 security mechanisms because PHP does not define the associated HTTP_*
 variables.
Ubuntu-Description:
Notes:
Priority: untriaged
Discovered-by:
Assigned-to:
CVSS:

Bugs:
dapper_phpbb2: released (2.0.18-2)
edgy_phpbb2: released (2.0.18-2)
feisty_phpbb2: released (2.0.18-2)
devel_phpbb2: released (2.0.18-2)
upstream_phpbb2: needs-triage