CVE-2000-0696

Name of the Vulnerable Software and Affected Versions Solaris AnswerBook2 (affected versions not specified)

Description The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts. This allows remote attackers to add user accounts to the interface by directly calling the admin CGI script.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.