First published: Fri Jan 28 2005(Updated: )
useredit_account.wdm in Alt-N WebAdmin 3.0.4 does not properly validate account edits by the logged in user, which allows remote authenticated users to edit other users' account information via a modified user parameter.
Credit: cve@mitre.org
Affected Software | Affected Version | How to fix |
---|---|---|
Alt-N WebAdmin | =3.0.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2005-0318 is considered a medium severity vulnerability due to its impact on user account data.
To fix CVE-2005-0318, update to a patched version of Alt-N WebAdmin that properly validates account edits.
CVE-2005-0318 is an authentication bypass vulnerability allowing unauthorized account modifications.
Users of Alt-N WebAdmin version 3.0.2 and earlier are affected by CVE-2005-0318.
An attacker can modify other users' account information if they are logged in, potentially leading to unauthorized access.