CVE-2000-0944

Name of the Vulnerable Software and Affected Versions CGI Script Center News Update version 1.1

Description The issue concerns a problem with password validation during a password change operation. Specifically, it does not properly validate the original news administration password, allowing remote attackers to modify the password without knowing the original password.

Recommendations For CGI Script Center News Update version 1.1, consider temporarily disabling the password change operation until a proper fix is available. Restrict access to the news administration interface to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.