Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 04/10/2002 Updated: 05/09/2008

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

VMScore: 1000

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

Directory traversal vulnerability in splashAdmin.php for Cobalt Qube 3.0 allows local users and remote attackers, to gain privileges as the Qube Admin via .. (dot dot) sequences in the sessionId cookie that point to an alternate session file.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cobalt qube 3.0

source: wwwsecurityfocuscom/bid/5297/info A vulnerability has been reported for Cobalt Qube that may allow an attacker to bypass the authentication mechanism and obtain administrative privileges The vulnerability occurs because of a weak authentication mechanism with Cobalt Qube appliances The authentication mechanism fails to properl ...

NVD-CWE-Other http://www.iss.net/security_center/static/9669.php http://www.securityfocus.com/bid/5297 http://archives.neohapsis.com/archives/bugtraq/2002-07/0261.html https://nvd.nist.gov https://www.exploit-db.com/exploits/21640/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-1058

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect