Logo
-

Byte Open Security

(ByteOS Network)

Log In

Sign Up

ByteOS

Security
Vulnerability Details
Registries
Custom Views
Weaknesses
Attack Patterns
Filters & Tools
NVD Vulnerability Details :
CVE-2007-1160
Modified
More InfoOfficial Page
Source-cve@mitre.org
View Known Exploited Vulnerability (KEV) details
Published At-02 Mar, 2007 | 21:18
Updated At-16 Oct, 2018 | 16:36

webSPELL 4.0, and possibly later versions, allows remote attackers to bypass authentication via a ws_auth cookie, a different vulnerability than CVE-2006-4782.

CISA Catalog
Date AddedDue DateVulnerability NameRequired Action
N/A
Metrics
TypeVersionBase scoreBase severityVector
Primary2.010.0HIGH
AV:N/AC:L/Au:N/C:C/I:C/A:C
CPE Matches
webspell
webspell
>>webspell>>4.0
cpe:2.3:a:webspell:webspell:4.0:*:*:*:*:*:*:*
Weaknesses
CWE IDTypeSource
CWE-287Primarynvd@nist.gov
Evaluator Description
Evaluator Impact

This vulnerability may affect more recent versions of the product as well. (WebSPELL, WebSPELL, 4.0 and later)

Evaluator Solution

Vendor Statements
References
HyperlinkSourceResource
http://osvdb.org/33143cve@mitre.org
N/A
http://securityreason.com/securityalert/2337cve@mitre.org
N/A
http://www.securityfocus.com/archive/1/460937/100/0/threadedcve@mitre.org
N/A
Change History
0Changes found
Details not found