← back
CVE-2002-1867

CVE-2002-1867

EPSS 1.5%
The default configuration of BizDesign ImageFolio 2.23 through 2.26 does not control access to (1) admin/setup.cgi, which allows remote attackers to create an administrative account, or (2) admin/nph-build.cgi, which allows remote attackers to cause a denial of service (CPU consumption).
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://marc.info/?l=bugtraq&m=102373053829427&w=2http://www.iss.net/security_center/static/9308.phphttp://www.securityfocus.com/bid/4975