CyberSec.Space Logo
Back to CVE Browser

CVE-2006-0864

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1250%
EPSS Percentile0.70th
PublishedFeb 23, 2006
Last ModifiedApr 16, 2026

Vulnerability Description

filescan in Global Hauri ViRobot 2.0 20050817 does not verify the Cookie HTTP header, which allows remote attackers to gain administrative privileges via an arbitrary cookie value.

Affected Platforms (CPE)

πŸ“¦
Hauri

Virobot

= 2.0_2005-08-17

References & Advisories

πŸ”— http://secunia.com/advisories/18974
πŸ”— http://securitytracker.com/id?1015658
πŸ”— http://www.securityfocus.com/archive/1/425788/100/0/threaded
πŸ”— http://www.securityfocus.com/bid/16768
πŸ”— http://www.vupen.com/english/advisories/2006/0691
πŸ”— http://x82.inetcop.org/h0me/adv1sor1es/INCSA.2006-0x82-028-VIROBOT.txt
πŸ”— https://exchange.xforce.ibmcloud.com/vulnerabilities/24850
πŸ”— http://secunia.com/advisories/18974

Related Vulnerabilities

CVE-2009-447610.0

Stack-based buffer overflow in HAURI ViRobot Desktop 5.5 before 2009-09-28.00 allows remote attackers to execute arbitrary code vi...

CVE-2008-55479.3

HAURI ViRobot 2008.12.4.1499 and possibly 2008.9.12.1375, when Internet Explorer 6 or 7 is used, allows remote attackers to bypass...

CVE-2005-27207.5

Stack-based buffer overflow in the ACE archive decompression library (vrAZace.dll) in HAURI Anti-Virus products including ViRobot ...

CVE-2005-20415.0

Buffer overflow in addschup in HAURI ViRobot 2.0, and possibly other products, allows remote attackers to execute arbitrary code v...