Vulnerabilities > CVE-2001-1535 - Unspecified vulnerability in Open Source Development Network Slashcode 2.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Slashcode 2.0 creates new accounts with an 8-character random password, which could allow local users to obtain session ID's from cookies and gain unauthorized access via a brute force attack.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00084.html
- http://cert.uni-stuttgart.de/archive/bugtraq/2001/11/msg00084.html
- http://www.iss.net/security_center/static/7493.php
- http://www.iss.net/security_center/static/7493.php
- http://www.securityfocus.com/bid/3519
- http://www.securityfocus.com/bid/3519