Vulnerabilities > CVE-2005-4657 - Authentication Bypass vulnerability in Ocean12 Technologies Calendar Manager PRO 1.01

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

ocean12-technologies

NVD

Published: 2005-12-31

Updated: 2008-09-05

Summary

Ocean12 Calendar Manager Pro 1.01 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to /admin/view.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Vulnerable Configurations

Part	Description	Count
Application	Ocean12_Technologies Ocean12 Technologies Calendar Manager PRO 1.01	1

References

http://www.securityfocus.com/bid/15329