CVE-2002-0097

Published: Jun 25, 2002

Modified: Aug 8, 2024

PUBLISHED

Description

Geeklog 1.3 allows remote attackers to hijack user accounts, including the administrator account, by modifying the UID of a user's permanent cookie to the target account.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

geeklog-modify-auth-cookie(7869)

vdb-entry

x_refsource_XF

3844

vdb-entry

x_refsource_BID

20020110 Cookie modification allows unauthenticated user login in Geeklog 1.3

mailing-list

x_refsource_BUGTRAQ

http://geeklog.sourceforge.net/index.php?topic=Security

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2002-0097

Description

Affected Products

References