NuytsTech Security

CVE-2006-0153

by ·

427BB 2.2 and 2.2.1 verifies authentication credentials based on the username, authenticated, and usertype cookies, which allows remote attackers to bypass authentication by using a valid username and usertype and setting the authenticated cookie.

Date published : 2006-01-10

http://www.securityfocus.com/bid/16178

http://www.securityfocus.com/archive/1/421326/100/0/threaded

Tags: