Vulnerabilities > CVE-2006-0440 - Unspecified vulnerability in Text Rider Text Rider 2.4
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Text Rider 2.4 allows attackers to bypass authentication and upload files without providing a valid password by obtaining the MD5 hash of the password (possibly via another vulnerability that reads it from a data file), then including the hash in a cookie.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |