Vulnerability Description
Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.
CVSS Score
7.5
HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Ecartis | Ecartis | 1.0.0_snapshot_2002-10-13 |
References
- http://marc.info/?l=bugtraq&m=104636153214262&w=2
- http://marc.info/?l=bugtraq&m=104673407728323&w=2
- http://www.debian.org/security/2003/dsa-271
- http://www.securityfocus.com/bid/6971PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11431
- http://marc.info/?l=bugtraq&m=104636153214262&w=2
- http://marc.info/?l=bugtraq&m=104673407728323&w=2
- http://www.debian.org/security/2003/dsa-271
- http://www.securityfocus.com/bid/6971PatchVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/11431
FAQ
What is CVE-2003-0162?
CVE-2003-0162 is a vulnerability with a CVSS score of 7.5 (HIGH). Ecartis 1.0.0 (formerly listar) before snapshot 20030227 allows remote attackers to reset passwords of other users and gain privileges by modifying hidden form fields in the HTML page.
How severe is CVE-2003-0162?
CVE-2003-0162 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0162?
Check the references section above for vendor advisories and patch information. Affected products include: Ecartis Ecartis.