Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0604

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2006-0604
Last Modified 07 Mar 2011 09:30:26
Published 08 Feb 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0604

Summary

check.php in Hinton Design phphg Guestbook 1.2 does not check the user password when authenticating via cookies, which allows remote attackers to gain unauthorized access.

Vulnerable Systems

Application

  • Hinton Design Phphg Guestbook 1.2


References

VUPEN - ADV-2006-0480

BID - 16541

BUGTRAQ - 20060211 [eVuln] phphg Guestbook Multiple Vulnerabilities

SECTRACK - 1015620

SECUNIA - 18758

MISC - http://evuln.com/vulns/58/description.html


Last Updated: 27 May 2016 10:41:44