PT-2006-1738 · Vhcs · Virtual Hosting Control System

Román Medina-Heigl Hernández

Published

2006-02-15

Updated

2018-10-19

CVE-2006-0684

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Virtual Hosting Control System (VHCS) versions 2.4.7.1 and earlier

Description The issue allows remote attackers to gain unauthorized access due to the lack of verification of the old password when a user changes their password.

Recommendations For Virtual Hosting Control System (VHCS) versions 2.4.7.1 and earlier, update to a version that verifies the old password during the password change process to prevent unauthorized access.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-0684

Affected Products

Virtual Hosting Control System

PT-2006-1738 · Vhcs · Virtual Hosting Control System

CVE-2006-0684

Related Identifiers

Affected Products

References · 8