Back to search
CVE-2002-0267
Published: Apr 2, 2003
Modified: Aug 8, 2024
PUBLISHED
Description
preferences.php in Simple Internet Publishing System (SIPS) before 0.3.1 allows remote attackers to gain administrative privileges via a linebreak in the "theme" field followed by the Status::admin command, which causes the Status line to be entered into the password file.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://sips.sourceforge.net/adminvul.html
x_refsource_CONFIRM
sips-theme-admin-access(8193)
vdb-entry
x_refsource_XF
20020212 SIPS - vulnerable to anyone gaining admin access.
mailing-list
x_refsource_BUGTRAQ
4097
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now