CVE-2002-0491

Name of the Vulnerable Software and Affected Versions AlGuest version 1.0

Description The issue allows remote attackers to bypass authentication and gain privileges by setting the admin cookie to an arbitrary value. This is due to the admin.php file in AlGuest checking for the existence of the admin cookie to authenticate the administrator.

Recommendations For AlGuest version 1.0, consider disabling the admin.php file or restricting access to it until a proper authentication mechanism is implemented to prevent arbitrary admin cookie values from being set.