Vulnerabilities > CVE-2006-0686 - Unspecified vulnerability in Virtual Hosting Control System Virtual Hosting Control System
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
add_user.php in Virtual Hosting Control System (VHCS) 2.4.7.1 and earlier does not check user privileges when adding a new administrative user, which allows remote attackers to gain unauthorized access.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://www.rs-labs.com/adv/RS-Labs-Advisory-2006-1.txt
- http://secunia.com/advisories/18799
- http://www.securityfocus.com/bid/16600
- http://securityreason.com/securityalert/430
- http://www.vupen.com/english/advisories/2006/0534
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24667
- http://www.securityfocus.com/archive/1/424816/100/0/threaded