Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1276

Overview

Vulnerability Score 10.0 10.0
CVE Id CVE-2006-1276
Last Modified 07 Mar 2011 09:32:41
Published 19 Mar 2006 06:06:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1276

Summary

admin.php in Himpfen Consulting Company PHP SimpleNEWS 1.0.0 allows remote attackers to bypass authentication by setting the admin parameter in a cookie.

Vulnerable Systems

Application

  • Himpfen Consulting Php Simplenews 1.0.0


References

VUPEN - ADV-2006-0913

SECUNIA - 19195

MISC - http://evuln.com/vulns/94/summary.html

XF - simplenews-admin-bypass-security(25177)

BID - 17186

BUGTRAQ - 20060322 [eVuln] PHP SimpleNEWS, PHP SimpleNEWS MySQL - Authentication Bypass Vulnerability

OSVDB - 23803

SREASON - 613


Last Updated: 27 May 2016 10:42:00