User Data Leakage Vulnerability in Cobalt RaQ 2.0 and RaQ 3i

User Data Leakage Vulnerability in Cobalt RaQ 2.0 and RaQ 3i

CVE-1999-1530 · LOW Severity

AV:L/AC:L/AU:N/C:P/I:P/A:N

cgiwrap as used on Cobalt RaQ 2.0 and RaQ 3i does not properly identify the user for running certain scripts, which allows a malicious site administrator to view or modify data located at another virtual site on the same system.

Learn more about our User Device Pen Test.