PT-2006-1738 · Vhcs · Virtual Hosting Control System

Román Medina-Heigl Hernández

Publicado

2006-02-15

Atualizado

2018-10-19

CVE-2006-0684

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Virtual Hosting Control System (VHCS) versions 2.4.7.1 and earlier

Description The issue allows remote attackers to gain unauthorized access due to the lack of verification of the old password when a user changes their password.

Recommendations For Virtual Hosting Control System (VHCS) versions 2.4.7.1 and earlier, update to a version that verifies the old password during the password change process to prevent unauthorized access.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-0684

Produtos afetados

Virtual Hosting Control System

PT-2006-1738 · Vhcs · Virtual Hosting Control System

CVE-2006-0684

Identificadores relacionados

Produtos afetados

Referências · 8