Lucene search
MitreCVE-2008-7086HistoryAug 26, 2009 - 2:24 p.m.
CVE-2008-7086
2009-08-2614:24:16
CWE-287
mitre
web.nvd.nist.gov
62
cve-2008-7086
maian greetings
authentication bypass
remote attack
administrative privileges
cookie vulnerability
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.017
Percentile
87.7%
Maian Greetings 2.1 allows remote attackers to bypass authentication and gain administrative privileges by setting the mecard_admin_cookie cookie to admin.
Affected configurations
Node
maianscriptworldmaian_greetingsMatch2.1
| Vendor | Product | Version | CPE |
|---|---|---|---|
| maianscriptworld | maian_greetings | 2.1 | cpe:2.3:a:maianscriptworld:maian_greetings:2.1:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-7086
2009-08-26 14:00:00
prion
prion
Authentication flaw
2009-08-26 14:24:00
nvd
nvd
CVE-2008-7086
2009-08-26 14:24:16
exploitdb
exploitdb
Maian Greetings 2.1 - Insecure Cookie Handling
2008-07-12 00:00:00
nessus
nessus
Maian Scripts Cookie Manipulation Authentication Bypass
2008-07-15 00:00:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.017
Percentile
87.7%
Related for CVE-2008-7086