CVE-2007-6644 Information

Description

Joomla! before 1.5 RC4 allows remote authenticated administrators to promote arbitrary users to the administrator group in violation of the intended security model.

Reference

http://osvdb.org/43277 http://secunia.com/advisories/29257 http://securitytracker.com/id?1019145 http://www.joomla.org/content/view/4335/116/ http://www.mandriva.com/security/advisories?name=MDVSA-2008:060 http://www.securityfocus.com/bid/28111