Exploit VocalTec VGW4/8 Telephony Gateway - Remote Authentication Bypass

Exploiter

Exploiter

Хакер
34,644
0
18 Дек 2022
EDB-ID
23813
Проверка EDB
  1. Пройдено
Автор
RAFEL IVGI THE-INSIDER
Тип уязвимости
WEBAPPS
Платформа
ASP
CVE
cve-2004-1813
Дата публикации
2004-03-15
Код: 
source: https://www.securityfocus.com/bid/9876/info

It has been reported that the VGW4/8 Telephony Gateway is prone to a remote authentication bypass vulnerability via its web configuration tool. The problem is due to a design error in the application that allows a user to access configuration pages without prior authentication.

Successful exploitation of this issue may allow a remote attacker to gain control of the affected appliance via its web configuration tool.

http://www.example.com/home.asp/
http://www.example.com/home.asp/../menu.asp
 
Источник
www.exploit-db.com
Войдите или зарегистрируйтесь для ответа.

Похожие темы

Exploiter
Exploit VocalTec VGW120/VGW480 Telephony Gateway Remote H.225 - Denial of Service
Ответы
0
Просмотры
335
Эксплойты & Уязвимости
Exploiter
Exploiter
Exploiter
Exploit Metasploit Framework Telephony
Ответы
0
Просмотры
957
Эксплойты & Уязвимости
Exploiter
Exploiter
Сверху Снизу