Volution Client Authentication Failure Hijacking Vulnerability

Bugtraq ID: 2850
Class: Configuration Error
CVE:
Remote: Yes
Local: No
Published: Jun 08 2001 12:00AM
Updated: Jun 08 2001 12:00AM
Credit: This vulnerability was originally announced in a Caldera Security Advisory on June 8, 2001.
Vulnerable: Caldera Volution 1.0.7
+ Caldera OpenLinux Desktop 2.3
- Mandriva Linux Mandrake 7.2
- Mandriva Linux Mandrake 7.1
- Mandriva Linux Mandrake 7.0
- Red Hat Linux 6.2
- RedHat Linux 6.1
- S.u.S.E. Linux 7.1
- S.u.S.E. Linux 7.0
- S.u.S.E. Linux 6.4
+ SCO eDesktop 2.4
Caldera Volution 1.0.6
+ Caldera OpenLinux Desktop 2.3
- Mandriva Linux Mandrake 7.2
- Mandriva Linux Mandrake 7.1
- Mandriva Linux Mandrake 7.0
- Red Hat Linux 6.2
- RedHat Linux 6.1
- S.u.S.E. Linux 7.1
- S.u.S.E. Linux 7.0
- S.u.S.E. Linux 6.4
+ SCO eDesktop 2.4
Caldera Volution 1.0
+ Caldera OpenLinux Desktop 2.3
- Mandriva Linux Mandrake 7.2
- Mandriva Linux Mandrake 7.1
- Mandriva Linux Mandrake 7.0
- Red Hat Linux 6.2
- RedHat Linux 6.1
- S.u.S.E. Linux 7.1
- S.u.S.E. Linux 7.0
- S.u.S.E. Linux 6.4
+ SCO eDesktop 2.4
Not Vulnerable: Caldera Volution 1.0.8 -47
+ Caldera OpenLinux Desktop 2.3
- Mandriva Linux Mandrake 7.2
- Mandriva Linux Mandrake 7.1
- Mandriva Linux Mandrake 7.0
- Red Hat Linux 6.2
- RedHat Linux 6.1
- S.u.S.E. Linux 7.1
- S.u.S.E. Linux 7.0
- S.u.S.E. Linux 6.4
+ SCO eDesktop 2.4
- Turbolinux Turbolinux 6.1
- Turbolinux Turbolinux 6.0


 

Privacy Statement
Copyright 2010, SecurityFocus