CVE-2005-0685

Name of the Vulnerable Software and Affected Versions OutStart Participate Enterprise (PE) (affected versions not specified)

Description The issue allows remote attackers to conduct unauthorized activities due to multiple access validation errors. This includes browsing arbitrary directory trees by modifying the rootFolder parameter to "displaynavigator.jsp", renaming arbitrary directory objects by modifying the selectedObject parameter to "renamepopup.jsp", and deleting arbitrary directory objects by modifying the selectedObjectsCSV parameter to "displaydeletenavigator.jsp". Other unauthorized activities can be conducted via various commands, including showDeleteView, showWebFolderView, showLibraryView, showMyLibraryView, singleSelectObject, processRadioSelection, processCheckboxSelection, singleSelectObject, addToSelectedObjects, or removeFromSelectedObjects.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.