PT-2006-6641 · Renasoft · Netjetserver

Publicado

2006-11-20

Atualizado

2017-07-20

CVE-2006-5980

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Renasoft NetJetServer versions 2.5.3.939 and earlier

Description The issue is related to improper login authentication in the adm lgn admin.asp file, which allows remote attackers to obtain administrative privileges.

Recommendations For versions 2.5.3.939 and earlier, consider restricting access to the adm lgn admin.asp file until a proper fix is available. As a temporary workaround, implement additional authentication measures to minimize the risk of exploitation.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2006-5980

Produtos afetados

Netjetserver

PT-2006-6641 · Renasoft · Netjetserver

CVE-2006-5980

Identificadores relacionados

Produtos afetados

Referências · 4