CVE-2003-0588

CRITICAL

10.0

CVSS Severity Score

EPSS Score0.1270%

EPSS Percentile39.55th

PublishedAug 18, 2003

Last ModifiedApr 16, 2026

Vulnerability Description

admin.php in Digi-news 1.1 allows remote attackers to bypass authentication via a cookie with the username set to the name of the administrator, which satisfies an improper condition in admin.php that does not require a correct password.

Affected Platforms (CPE)

📦

Digi Fx

Digi News

= 1.1

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=105839007002993&w=2

Related Vulnerabilities

CVE-2003-071510.0

Heap-based buffer overflow in the Distributed Component Object Model (DCOM) interface in the RPCSS Service allows remote attackers...

CVE-2003-017810.0

Multiple buffer overflows in Lotus Domino Web Server before 6.0.1 allow remote attackers to cause a denial of service or execute a...

CVE-2003-019610.0

Multiple buffer overflows in Samba before 2.2.8a may allow remote attackers to execute arbitrary code or cause a denial of service...

CVE-2003-020110.0

Buffer overflow in the call_trans2open function in trans2.c for Samba 2.2.x before 2.2.8a, 2.0.10 and earlier 2.0.x versions, and ...