PT-2007-2783 · Dynaliens · Dynaliens

Publicado

2007-03-10

Atualizado

2018-10-16

CVE-2007-1389

CVSS v2.0

7.5

Alta

Vetor

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions dynaliens versions 2.0 through 2.1

Description The issue allows remote attackers to bypass authentication and perform certain privileged actions. This can be achieved by making a direct request for specific files in the admin/ directory, including validlien.php3, supprlien.php3, supprub.php3, confsuppr.php3, modiflien.php3, or confmodif.php3.

Recommendations For dynaliens versions 2.0 through 2.1, as a temporary workaround, consider restricting access to the admin/ directory to minimize the risk of exploitation. Avoid using direct requests for the mentioned files until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2007-1389

Produtos afetados

Dynaliens

PT-2007-2783 · Dynaliens · Dynaliens

CVE-2007-1389

Identificadores relacionados

Produtos afetados

Referências · 5