Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1574

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-1574
Last Modified 24 Oct 2012 12:00:00
Published 24 Aug 2009 06:30:01
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1574

Summary

TikiWiki 1.6.1 allows remote attackers to bypass authentication by entering a valid username with an arbitrary password, possibly related to the Internet Explorer "Remember Me" feature. NOTE: some of these details are obtained from third party information.

Vulnerable Systems

Application

  • Tikiwiki 1.6.1

  • Tikiwiki Cms%2fgroupware 1.6.1


References

BID - 14170

CONFIRM - http://sourceforge.net/tracker/index.php?func=detail&aid=748739&group_id=64258&atid=506846

XF - tikiwiki-username-security-byass(40347)


Last Updated: 27 May 2016 10:38:10