Vulnerabilities > CVE-2006-3753 - Remote Security vulnerability in Professional Home Page Tools Guestbook
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
NONE Summary
setcookie.php for the administration login in Professional Home Page Tools Guestbook records the hash of the administrator password in a cookie, which allows attackers to conduct brute force password guessing attacks after obtaining the hash.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |