Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-2046

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-2046
Last Modified 05 Sep 2008 04:32:11
Published 31 Dec 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-2046

Summary

x_news.php in X-News (x_news) 1.1 and earlier allows remote attackers to gain administrative privileges by stealing and replaying the md5_password cookie.

Vulnerable Systems

Application

  • Xqus X-news 1.1


References

MISC - http://www.ifrance.com/kitetoua/tuto/x_holes.txt

VULN-DEV - 20020313 X_holes


Last Updated: 27 May 2016 10:37:35