Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1488

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2003-1488
Last Modified 05 Sep 2008 04:37:04
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1488

Summary

The (1) verif_admin.php and (2) check_admin.php scripts in Truegalerie 1.0 allow remote attackers to gain administrator access via a request to admin.php without the connect parameter and with the loggedin parameter set to any value, such as 1.

Vulnerable Systems

Application

  • Truelogik Truegalerie 1.0


References

XF - truegalerie-verifadmin-admin-access(11886)

BID - 7427

SECUNIA - 8683

VULNWATCH - 20030425 True Galerie 1.0 : Admin Access & File Copy


Last Updated: 27 May 2016 10:38:22