Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4260

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2007-4260
Last Modified 05 Nov 2012 10:44:55
Published 08 Aug 2007 07:17:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2007-4260

Summary

EZPhotoSales 1.9.3 and earlier has a default "admin" account for galleries, which allows remote attackers to access arbitrary galleries by specifying this username.

Vulnerable Systems

Application

  • Ez Photo Sales 1.9.3


References

BUGTRAQ - 20070806 EZPhotoSales 1.9.3 Multiple Vulnerabilities

MISC - http://www.informit.com/guides/content.asp?g=security&seqNum=268

MISC - http://www.informit.com/guides/content.asp?g=security&seqNum=267

MISC - http://www.airscanner.com/security/07080601_ezphotosales.htm

SREASON - 2985

XF - ezphotosales-admin-default-password(35837)


Last Updated: 27 May 2016 10:47:21