Unknown · Dl Download Ticket Service · CVE-2011-5253
**Name of the Vulnerable Software and Affected Versions**
Dl Download Ticket Service versions 0.3 through 0.9
**Description**
The issue allows remote attackers to login as an arbitrary user by supplying an authorization header.
**Recommendations**
For versions 0.3 through 0.9, consider disabling the login functionality that processes the authorization header until a patch is available. Restrict access to the service to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.