HomePentest-Tools.com Logo

Comersus BackOffice Lite Administrative Bypass CVE-2005-0301

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Comersus ASP shopping cart is a set of ASP scripts creating an online shoppingcart. It works on a database of your own choosing, default is msaccess, and includes online administration tools.

Risk description

By accessing the /comersus_backoffice_install10.asp file it is possible to bypass the need to authenticate as an administrative user.

Recommendation

Delete the file /comersus_backoffice_install10.asp from the server as it is not needed after the installation process has been completed.

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
May 2, 2005
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available