CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2012-1256

The single sign-on (SSO) implementation in EasyVista before 2010.1.1.89 allows remote attackers to bypass authentication via a modified url_account parameter, in conjunction with a valid login name in the SSPI_HEADER parameter, to index.php.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.3%

CVSS Severity

CVSS v2 Score 5.0

References

http://secunia.com/advisories/48124
http://www.kb.cert.org/vuls/id/273502
http://secunia.com/advisories/48124
http://www.kb.cert.org/vuls/id/273502

Products affected by CVE-2012-1256

Easyvista » Easyvista » Version: Any

cpe:2.3:a:easyvista:easyvista:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2012-1256

Products

Pricing

Contact Us