CVE-2003-0162

Sažetak

Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.

Reference

http://marc.info/?l=bugtraq&m=104636153214262&w=2
http://marc.info/?l=bugtraq&m=104673407728323&w=2
http://www.debian.org/security/2003/dsa-271
http://www.securityfocus.com/bid/6971
https://exchange.xforce.ibmcloud.com/vulnerabilities/11431

CVSS

Base:	7.5
Impact:	6.4
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Zadnje važnije ažuriranje

11-07-2017 - 01:29

Objavljeno

02-04-2003 - 05:00