CVE-2006-1257

2006-03-19T01:02:00
ID CVE-2006-1257
Type cve
Reporter cve@mitre.org
Modified 2018-10-18T16:31:00

Description

The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypass authentication by logging in to authfiles/login.asp with a valid username and any password, then going to the main site twice.