CVE-2007-6496

NONECVSS 0.0

0.0

Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote attackers to register arbitrary users via a request to hosting/addsubsite.asp with the loginname and password parameters set, when preceded by certain requests to hosting/default.asp and hosting/selectdomain.asp, a related issue to CVE-2005-1654.

🔗 References (16)

cve@mitrehttp://hostingcontroller.com/english/logs/Post-Hotfix-3_3-sec-Patch-ReleaseNotes.html
cve@mitrehttp://secunia.com/advisories/28973
cve@mitrehttp://securityreason.com/securityalert/3474
cve@mitrehttp://securitytracker.com/id?1019222
cve@mitrehttp://www.securityfocus.com/archive/1/485028/100/0/threaded
cve@mitrehttp://www.securityfocus.com/bid/26862
cve@mitrehttps://exchange.xforce.ibmcloud.com/vulnerabilities/39038
cve@mitrehttps://www.exploit-db.com/exploits/4730
af854a3a-2127-422b-91ae-364da2661108http://hostingcontroller.com/english/logs/Post-Hotfix-3_3-sec-Patch-ReleaseNotes.html
af854a3a-2127-422b-91ae-364da2661108http://secunia.com/advisories/28973
af854a3a-2127-422b-91ae-364da2661108http://securityreason.com/securityalert/3474
af854a3a-2127-422b-91ae-364da2661108http://securitytracker.com/id?1019222
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/archive/1/485028/100/0/threaded
af854a3a-2127-422b-91ae-364da2661108http://www.securityfocus.com/bid/26862
af854a3a-2127-422b-91ae-364da2661108https://exchange.xforce.ibmcloud.com/vulnerabilities/39038

Is Your Infrastructure Affected by CVE-2007-6496?

EchelonGraph automatically scans your cloud infrastructure and maps CVE exposure using blast radius analysis.

Start Free Scan →Browse All CVEs

CVE-2007-6496

📅 Published

🔄 Last Modified

🔗 References (16)

Dependency Blast Radius

Is Your Infrastructure Affected by CVE-2007-6496?