Vulnerabilities > CVE-2001-1011 - Unspecified vulnerability in Mambo Site Server

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

mambo

NVD

Published: 2001-07-25

Updated: 2017-10-10

Summary

index2.php in Mambo Site Server 3.0.0 through 3.0.5 allows remote attackers to gain Mambo administrator privileges by setting the PHPSESSID parameter and providing the appropriate administrator information in other parameters.

Vulnerable Configurations

Part	Description	Count
Application	Mambo Mambo Mambo Site Server 3.0.4 Mambo Mambo Site Server 3.0.3 Mambo Mambo Site Server 3.0 Mambo Mambo Site Server 3.0.5 Mambo Mambo Site Server 3.0.1 Mambo Mambo Site Server 3.0.2	6

References

http://archives.neohapsis.com/archives/bugtraq/2001-07/0569.html
http://www.securityfocus.com/bid/3093
http://prdownloads.sourceforge.net/mambo/mambov3.0.6.tar.gz
http://www.osvdb.org/1911
https://exchange.xforce.ibmcloud.com/vulnerabilities/6910