Vulnerabilities > CVE-2002-1058 - Authentication Bypass vulnerability in Cobalt Qube 3.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
Directory traversal vulnerability in splashAdmin.php for Cobalt Qube 3.0 allows local users and remote attackers, to gain privileges as the Qube Admin via .. (dot dot) sequences in the sessionId cookie that point to an alternate session file.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Cobalt Qube 3.0 Authentication Bypass Vulnerability. CVE-2002-1058. Webapps exploit for php platform |
id | EDB-ID:21640 |
last seen | 2016-02-02 |
modified | 2002-07-24 |
published | 2002-07-24 |
reporter | pokley |
source | https://www.exploit-db.com/download/21640/ |
title | Cobalt Qube 3.0 - Authentication Bypass Vulnerability |