CVE Vulnerabilities

CVE-2002-0664

Published: Oct 04, 2002 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
7.5 HIGH
AV:N/AC:L/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

The default Access Control Lists (ACLs) of the administration database for ZMerge 4.x and 5.x provides arbitrary users (including anonymous users) with Manager level access, which allows the users to read or modify import/export scripts.

Affected Software

Name Vendor Start Version End Version
Zmerge Granite_software 4.0 (including) 4.0 (including)
Zmerge Granite_software 5.0 (including) 5.0 (including)

References