header-logo
Suggest Exploit
vendor:
LINBOX
by:
9
CVSS
CRITICAL
Remote Authentication Bypass
287
CWE
Product Name: LINBOX
Affected Version From:
Affected Version To:
Patch Exists: NO
Related CWE:
CPE:
Metasploit:
Other Scripts:
Platforms Tested:

LINBOX Remote Authentication Bypass Vulnerability

The LINBOX web-based administration scripts can be accessed without proper authorization, allowing unauthorized users to gain access to the administration interface.

Mitigation:

Apply the vendor-provided patch or upgrade to a version that has addressed this issue. Restrict access to the administration interface and ensure proper authentication is implemented.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/10010/info

It has been reported that LINBOX is prone to a remote authentication bypass vulnerability. This issue is due to a design error that would allow access to web based administration scripts without proper authorization.

This issue may allow unauthorized user to gain access to the administration scripts of the affected system.

Issuing the following request to the affected server will provide access to the administration interface:
http://www.example.com//admin/user.pl

Navigation

Suggest Exploit

Services By CQR