Vulnerabilities > CVE-2001-0425 - Unspecified vulnerability in Adcycle 0.77/0.78B

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
adcycle
exploit available
NVD
Published: 2001-06-27
Updated: 2008-09-05

Summary

AdLibrary.pm in AdCycle 0.78b allows remote attackers to gain privileges to AdCycle via a malformed Agent: header in the HTTP request, which is inserted into a resulting SQL query that is used to verify login information.

Vulnerable Configurations

Part Description Count
Application
Adcycle
2

Exploit-Db

descriptionAdcycle 0.77/0.78 AdLibrary.pm Session Access Vulnerability. CVE-2001-0425 . Remote exploit for cgi platform
idEDB-ID:20642
last seen2016-02-02
modified2001-02-19
published2001-02-19
reporterNeil K
sourcehttps://www.exploit-db.com/download/20642/
titleAdcycle 0.77/0.78 AdLibrary.pm Session Access Vulnerability

References