2 matches found
CVE-2001-0972
Surf-Net ASP Forum before 2.30 uses easily guessable cookies based on the UserID, which allows remote attackers to gain administrative privileges by calculating the value of the admin cookie UserID 1, i.e. "0888888."...
CVE-2001-0972
The CVE-2001-0972 entry concerns Surf-Net ASP Forum prior to version 2.30, where admin cookies are derived from the UserID and are easily guessable (example: admin cookie for UserID 1 is “0888888”). This creates a remote‑attack risk: a attacker could calculate the admin cookie and gain administra...