CVE-2006-1257

The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypass authentication by logging in to authfiles/login.asp with a valid username and any password, then going to the main site twice.
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:microsoft:commerce_server:2002:*:*:*:*:*:*:*
cpe:2.3:a:microsoft:commerce_server:2002:sp1:*:*:*:*:*:*

History

No history.

Information

Published : 2006-03-19 01:02

Updated : 2024-02-04 16:52


NVD link : CVE-2006-1257

Mitre link : CVE-2006-1257

CVE.ORG link : CVE-2006-1257


JSON object : View

Products Affected

microsoft

  • commerce_server