Vulnerabilities > CVE-2005-0285 - Unspecified vulnerability in Bottomline Webseries Payment Application 4.0

CVSS 4.6 - MEDIUM

Attack vector

LOCAL

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

local

low complexity

bottomline

NVD

Published: 2005-05-02

Updated: 2017-07-11

Summary

Webseries Payment Application does not properly restrict privileged operations, which allows remote authenticated users to gain privileges by directly accessing certain URLs.

Vulnerable Configurations

Part	Description	Count
Application	Bottomline Bottomline Webseries Payment Application 4.0	1

References

http://marc.info/?l=bugtraq&m=110547396124885&w=2
http://secunia.com/advisories/13821
http://securitytracker.com/id?1012854
http://www.securityfocus.com/bid/12216
https://exchange.xforce.ibmcloud.com/vulnerabilities/18848