CVE-2006-2794 - CERT CVE

  1. CVE-2006-2794

ID CVE-2006-2794
Sažetak Hesabim.asp in ASPSitem 2.0 and earlier allows remote attackers to read private messages of other users via a modified id parameter.
Reference
CVSS
Base: 7.8
Impact: 6.9
Exploitability:10.0
Pristup
VektorSloženostAutentikacija
NETWORK LOW NONE
Impact
PovjerljivostCjelovitostDostupnost
COMPLETE NONE NONE
CVSS vektor AV:N/AC:L/Au:N/C:C/I:N/A:N
Zadnje važnije ažuriranje 18-10-2018 - 16:43
Objavljeno 03-06-2006 - 01:02