CVE-2002-0736

Microsoft BackOffice 4.0 and 4.5, when configured to be accessible by other systems, allows remote attackers to bypass authentication and access the administrative ASP pages via an HTTP request with an authorization type (auth_type) that is not blank.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:backoffice:4.0:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:backoffice:4.5:*:*:*:*:*:*:*

History

No history.

Information

Published : 2002-08-12 04:00

Updated : 2024-02-04 16:31


NVD link : CVE-2002-0736

Mitre link : CVE-2002-0736

CVE.ORG link : CVE-2002-0736


JSON object : View

Products Affected

microsoft

  • backoffice