Vulnerabilities > CVE-2006-3837 - Remote Security vulnerability in Professional Home Page Tools Guestbook
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
delcookie.php in Professional Home Page Tools Guestbook changes the expiration date of a cookie instead of deleting the cookie's value, which makes it easier for attackers to steal the cookie and obtain the administrator's password hash after logout.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |