Описание
The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypass authentication by logging in to authfiles/login.asp with a valid username and any password, then going to the main site twice.
Ссылки
- Patch
- Patch
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:microsoft:commerce_server:2002:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:commerce_server:2002:sp1:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.42308
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypass authentication by logging in to authfiles/login.asp with a valid username and any password, then going to the main site twice.
EPSS
Процентиль: 97%
0.42308
Средний
7.5 High
CVSS2
Дефекты
NVD-CWE-Other