2007-10-09 10:00:00
mitre
PUBLISHED
Polar HelpDesk 3.0 allows remote attackers to bypass authentication by setting the UserId and UserType values in a cookie.