PT-2006-1740 · Vhcs · Virtual Hosting Control System

Román Medina-Heigl Hernández

Publicado

2006-02-15

Atualizado

2018-10-19

CVE-2006-0686

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Virtual Hosting Control System (VHCS) versions 2.4.7.1 and earlier

Description The issue allows remote attackers to gain unauthorized access due to a lack of user privilege checks when adding new administrative users.

Recommendations For Virtual Hosting Control System (VHCS) versions 2.4.7.1 and earlier, consider disabling the add user.php script until a patch is available to prevent unauthorized access. Restrict access to administrative user addition functionality to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-0686

Produtos afetados

Virtual Hosting Control System

PT-2006-1740 · Vhcs · Virtual Hosting Control System

CVE-2006-0686

Identificadores relacionados

Produtos afetados

Referências · 8