Planet eStream prior to 6.72.10.07 allows a low-privileged user to gain access to administrative and high-privileged user accounts by changing the value of the ON cookie. A brute-force attack can calculate a value that provides permanent access.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
planetestream planet estream |