Vulnerability Details CVE-2005-1708
templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.009
EPSS Ranking 74.6%
CVSS Severity
CVSS v2 Score 4.6
References
- http://marc.info/?l=bugtraq&m=111695726810435&w=2
- http://secunia.com/advisories/15452
- http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html
- http://www.osvdb.org/16763
- http://www.securityfocus.com/bid/13723
- http://www.vupen.com/english/advisories/2005/0589
- http://marc.info/?l=bugtraq&m=111695726810435&w=2
- http://secunia.com/advisories/15452
- http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html
- http://www.osvdb.org/16763
- http://www.securityfocus.com/bid/13723
- http://www.vupen.com/english/advisories/2005/0589