[Forgot Password]
Login  Register Subscribe

30480

 
 

423868

 
 

251782

 
 

909

 
 

196543

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2012-0264Date: (C)2014-01-03   (M)2023-12-22


op5 Monitor and op5 Appliance before 5.5.0 do not properly manage session cookies, which allows remote attackers to have an unspecified impact via unspecified vectors.

CVSS Score and Metrics +CVSS Score and Metrics -

CVSS V2 Severity:
CVSS Score : 10.0
Exploit Score: 10.0
Impact Score: 10.0
 
CVSS V2 Metrics:
Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality: COMPLETE
Integrity: COMPLETE
Availability: COMPLETE
  
Reference:
http://seclists.org/fulldisclosure/2012/Jan/62
SECUNIA-47344
OSVDB-78066
http://www.ekelow.se/file_uploads/Advisories/ekelow-aid-2012-01.pdf
http://www.op5.com/news/support-news/fixed-vulnerabilities-op5-monitor-op5-appliance/
https://bugs.op5.com/view.php?id=5094

CPE    2
cpe:/a:op5:monitor:5.4.0
cpe:/a:op5:monitor:5.3.5
CWE    1
CWE-264

© SecPod Technologies