CVE-2002-1867

The CVE-2002-1867 entry concerns BizDesign ImageFolio versions 2.23–2.26 where default configuration fails to restrict access to admin/setup.cgi and admin/nph-build.cgi. This allows remote attackers to (1) create an administrative account and (2) trigger a denial of service (CPU consumption). The...