CVE-2007-2017

siteadmin/useredit.php in AlstraSoft Video Share Enterprise does not check authentication, which allows remote attackers to obtain or modify user information via a direct request.

Date published : 2007-04-12

http://www.securityfocus.com/bid/23409

http://www.alstrasoft.com/videoshare_fix.zip