Summary
This host is running OpenX and is prone authentication bypass vulnerability.
Impact
Successful exploitation will allow remote attackers to gain administrative access to the affected application.
Impact Level: Application.
Solution
Upgarde to OpenX version 2.8.3 or later.
http://www.openx.org/ad-server
Insight
The flaw is due to unspecified error related to the 'www/admin/' directory, which can be exploited to bypass authentication.
Affected
OpenX version 2.8.1 and 2.8.2
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2009-4830 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- appRain CMF SQL Injection And Cross Site Scripting Vulnerabilities
- Ad Manager Pro Multiple SQL Injection And XSS Vulnerabilities
- AV Arcade 'ava_code' Cookie Parameter SQL Injection Vulnerability
- Admbook PHP Code Injection Flaw
- AlienVault Open Source SIEM (OSSIM) 'timestamp' Parameter Directory Traversal Vulnerability