Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-3602

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2008-3602
Last Modified 29 Jan 2009 01:53:57
Published 12 Aug 2008 03:41:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2008-3602

Summary

admin/wr_admin.php in PHP-Ring Webring System (aka uPHP_ring_website) 0.9.1 allows remote attackers to bypass authentication and gain administrative access by setting the admin cookie to 1.

Vulnerable Systems

Application

  • Psychdaily Php Ring Webring System 0.9.1


References

XF - phpring-wradmin-security-bypass(44379)

BID - 30624

MILW0RM - 6225

SREASON - 4143


Last Updated: 27 May 2016 10:48:14