Vulnerabilities > CVE-2000-0696 - Unspecified vulnerability in SUN Solaris Answerbook2
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supporting CGI scripts, which allows remote attackers to add user accounts to the interface by directly calling the admin CGI script.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 4 |
Exploit-Db
description | Sun AnswerBook2 1.4.2/1.4.3/1.4.4 Administration Interface Access. CVE-2000-0696 . Remote exploit for solaris platform |
id | EDB-ID:20144 |
last seen | 2016-02-02 |
modified | 2000-08-08 |
published | 2000-08-08 |
reporter | Lluis Mora |
source | https://www.exploit-db.com/download/20144/ |
title | Sun AnswerBook2 1.4.2/1.4.3/1.4.4 Administration Interface Access |