CVE-2006-1257

CVE-2006-1257 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

The sample files in the authfiles directory in Microsoft Commerce Server 2002 before SP2 allow remote attackers to bypass authentication by logging in to authfiles/login.asp with a valid username and any password, then going to the main site twice.

Learn more about our Cis Benchmark Audit For Server Software.