CVE-2006-0864

Опубликовано: 23 фев. 2006

Источник: nvd

CVSS2: 10

EPSS Низкий

Описание

filescan in Global Hauri ViRobot 2.0 20050817 does not verify the Cookie HTTP header, which allows remote attackers to gain administrative privileges via an arbitrary cookie value.

Ссылки

http://secunia.com/advisories/18974
Vendor Advisory
http://securitytracker.com/id?1015658
http://www.securityfocus.com/archive/1/425788/100/0/threaded
http://www.securityfocus.com/bid/16768
http://www.vupen.com/english/advisories/2006/0691
http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2006-0x82-028-VIROBOT.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/24850
http://secunia.com/advisories/18974
Vendor Advisory
http://securitytracker.com/id?1015658
http://www.securityfocus.com/archive/1/425788/100/0/threaded
http://www.securityfocus.com/bid/16768
http://www.vupen.com/english/advisories/2006/0691
http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2006-0x82-028-VIROBOT.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/24850

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:hauri:virobot:2.0_2005-08-17:*:*:*:*:*:*:*

EPSS

Процентиль: 87%

0.03171

Низкий

10 Critical

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-6h65-284h-2qhm

github

почти 4 года назад