Security Advisory

CVE-2001-0972

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2002-02-02 05:00:00

Last updated 2024-08-08 04:37:06

Assigner mitre

State PUBLISHED

Description

Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie (UserID 1), i.e. "0888888."

← Browse all CVEs View on cve.org ↗