PT-2002-2775 · Teekai · Teekai Forum
Publicado
2002-12-31
·
Atualizado
2016-10-18
·
CVE-2002-2054
CVSS v2.0
7.5
Alta
| Vetor | AV:N/AC:L/Au:N/C:P/I:P/A:P |
Name of the Vulnerable Software and Affected Versions
TeeKai Forum version 1.2
Description
The issue allows remote attackers to authenticate as the administrator and gain privileged web forum access. This is achieved by setting the
valid level cookie to admin.Recommendations
For TeeKai Forum version 1.2, consider restricting access to the administrator panel until a patch is available. As a temporary workaround, avoid using the
valid level cookie or restrict its modification to prevent unauthorized access.Exploit
Correção
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Identificadores relacionados
Produtos afetados
Teekai Forum