Vulnerabilities > CVE-2005-4453 - Privilege Escalation vulnerability in Ultraapps Issue Manager 2.1
Attack vector
NETWORK Attack complexity
LOW Privileges required
SINGLE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
UserProfile.cs in Ultraapps Issue Manager before 2.1 allows remote authenticated users to gain administrator privileges by modifying the original (1) p_User_user_id and (2) User_user_id parameters to UserProfile.aspx, then modifying the password field.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |