CVE-2008-7024

admin.php in Arz Development The Gemini Portal 4.7 and earlier allows remote attackers to bypass authentication and gain administrator privileges by setting the user cookie to "admin" and setting the name parameter to "users."

CVSS v2.0 6.8 MEDIUM

6.8^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability : 8.6 / Impact : 6.4

Access Vector NETWORK

Access Complexity MEDIUM

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact PARTIAL

Availability Impact PARTIAL

References

Link	Resource
http://osvdb.org/48639
http://secunia.com/advisories/32057	Vendor Advisory
http://www.securityfocus.com/archive/1/496761/100/0/threaded
http://www.securityfocus.com/bid/31429	Exploit
https://exchange.xforce.ibmcloud.com/vulnerabilities/45439
https://www.exploit-db.com/exploits/6584

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:arzdev:gemini_lite:3.5:::::::*
	cpe:2.3:a:arzdev:gemini_lite:3.6:::::::*
	cpe:2.3:a:arzdev:gemini_portal:4.7:::::::*

History

No history.

Information

Published : 2009-08-21 14:30

Updated : 2024-02-28 11:21

NVD link : CVE-2008-7024

Mitre link : CVE-2008-7024

CVE.ORG link : CVE-2008-7024

JSON object : View

Products Affected

arzdev

gemini_portal
gemini_lite

CWE

CWE-264

Permissions, Privileges, and Access Controls

{"id": "CVE-2008-7024", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:M/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "MEDIUM", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 8.6, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2009-08-21T14:30:00.563", "references": [{"url": "http://osvdb.org/48639", "source": "cve@mitre.org"}, {"url": "http://secunia.com/advisories/32057", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/archive/1/496761/100/0/threaded", "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/31429", "tags": ["Exploit"], "source": "cve@mitre.org"}, {"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/45439", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/6584", "source": "cve@mitre.org"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-264"}]}], "descriptions": [{"lang": "en", "value": "admin.php in Arz Development The Gemini Portal 4.7 and earlier allows remote attackers to bypass authentication and gain administrator privileges by setting the user cookie to \"admin\" and setting the name parameter to \"users.\""}, {"lang": "es", "value": "admin.php en Arz Development The Gemini Portal 4.7 y versiones anteriores permite a atacantes remotos saltarse la autenticaci\u00f3n y obtener privilegios administrativos fijando la cookie \"user\" con el valor \"admin\" y el par\u00e1metro \"name\" con el valor \"users\"."}], "lastModified": "2018-10-11T20:58:03.503", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:arzdev:gemini_lite:3.5:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "7B7BD679-7E52-49F8-826B-C1205DEF7D97"}, {"criteria": "cpe:2.3:a:arzdev:gemini_lite:3.6:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "81810F8F-C549-473C-BCD0-2536E9813336"}, {"criteria": "cpe:2.3:a:arzdev:gemini_portal:4.7:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "5F1E5188-5F3E-4741-A6DF-FE1C2FB5B6B1"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}