Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0944

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2000-0944
Last Modified 05 Sep 2008 04:22:15
Published 19 Dec 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0944

Summary

CGI Script Center News Update 1.1 does not properly validate the original news administration password during a password change operation, which allows remote attackers to modify the password without knowing the original password.

Vulnerable Systems

Application

  • Cgi Script Center News Update 1.1


References

XF - news-update-bypass-password

BID - 1881

BUGTRAQ - 20001027 CGI-Bug: News Update 1.1 administration password bug


Last Updated: 27 May 2016 10:35:56