Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-2297

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-2297
Last Modified 05 Sep 2008 12:00:00
Published 18 May 2008 10:20:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-2297

Summary

The admin.php file in Rantx allows remote attackers to bypass authentication and gain privileges by setting the logininfo cookie to "", which is present in the password file and probably passes an insufficient comparison.

Vulnerable Systems

Application

  • Roticv Rantx 1.0


References

XF - rantx-admin-auth-bypass(42464)

BID - 29243

MILW0RM - 5628

SECUNIA - 30279


Last Updated: 27 May 2016 10:47:48