Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0435

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-0435
Last Modified 10 Sep 2008 03:04:40
Published 13 May 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0435

Summary

The allmanageup.pl file upload CGI script in the Allmanage Website administration software 2.6 can be called directly by remote attackers, which allows them to modify user accounts or web pages.

Vulnerable Systems

Application

  • Matthew Redman Allmanage 2.6


References

BID - 1217

OSVDB - 1337

BUGTRAQ - 20000516 Allmanage.pl Vulnerabilities


Last Updated: 27 May 2016 10:35:42