Vulnerabilities > CVE-2003-0304 - Remote Security vulnerability in Oneorzero Helpdesk 1.4Rc4

CVSS 10.0 - CRITICAL

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

COMPLETE

Integrity impact

COMPLETE

Availability impact

COMPLETE

network

low complexity

oneorzero

critical

exploit available

NVD

Published: 2003-06-09

Updated: 2016-10-18

Summary

one||zero (aka One or Zero) Helpdesk 1.4 rc4 allows remote attackers to create administrator accounts by directly calling the install.php Helpdesk Installation script.

Vulnerable Configurations

Part	Description	Count
Application	Oneorzero Oneorzero Oneorzero Helpdesk 1.4_Rc4	1

Exploit-Db

description	OneOrZero Helpdesk 1.4 Install.PHP Administrative Access Vulnerability. CVE-2003-0304. Webapps exploit for php platform
id	EDB-ID:22606
last seen	2016-02-02
modified	2003-05-15
published	2003-05-15
reporter	frog
source	https://www.exploit-db.com/download/22606/
title	OneOrZero Helpdesk 1.4 Install.PHP Administrative Access Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References