Unauthenticated Remote Root Privilege Escalation in Aptis Totalbill's Sysgen Service

Unauthenticated Remote Root Privilege Escalation in Aptis Totalbill's Sysgen Service

CVE-2000-0757 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

The sysgen service in Aptis Totalbill does not perform authentication, which allows remote attackers to gain root privileges by connecting to the service and specifying the commands to be executed.

Learn more about our Web Application Penetration Testing UK.