Vulnerabilities > CVE-2007-1043 - Authentication Bypass vulnerability in Ezboo Webstats 3.0.3

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
apple
hp
ibm
linux
microsoft
santa-cruz-operation
sun
windriver
ezboo
exploit available
NVD
Published: 2007-02-21
Updated: 2018-10-16

Summary

Ezboo webstats, possibly 3.0.3, allows remote attackers to bypass authentication and gain access via a direct request to (1) update.php and (2) config.php.

Vulnerable Configurations

Part Description Count
OS
Apple
1
OS
Hp
2
OS
Ibm
2
OS
Linux
1
OS
Microsoft
8
OS
Santa_Cruz_Operation
1
OS
Sun
1
OS
Windriver
1
Application
Ezboo
1

Exploit-Db

descriptionEzboo Webstats 3.03 Administrative Authentication Bypass Vulnerability. CVE-2007-1043. Webapps exploit for php platform
idEDB-ID:29610
last seen2016-02-03
modified2007-02-16
published2007-02-16
reportersn0oPy
sourcehttps://www.exploit-db.com/download/29610/
titleEzboo Webstats 3.03 Administrative Authentication Bypass Vulnerability

References