Vulnerabilities > CVE-2002-1659 - Remote Security vulnerability in Iatek Portalapp 2.2

047910
CVSS 10.0 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
COMPLETE
Integrity impact
COMPLETE
Availability impact
COMPLETE
network
low complexity
iatek
critical

Summary

user_profile.asp in PortalApp 2.2 allows local users to gain privileges by modifying the user_id variable.

Vulnerable Configurations

Part Description Count
Application
Iatek
1