CVE-2011-5253
Published Jan 12, 2013
Last updated 7 years ago
Overview
- Description
- Dl Download Ticket Service 0.3 through 0.9 allows remote attackers to login as an arbitrary user by supplying an authorization header.
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-287
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:thegr:dl:0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "13292952-C6DC-42D3-8312-3FC3C684338D"
},
{
"criteria": "cpe:2.3:a:thegr:dl:0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "85D2D0FB-BA25-4BCF-86C7-AE3C14C27EAB"
},
{
"criteria": "cpe:2.3:a:thegr:dl:0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E9690724-F392-405F-A3C1-F95FD9BE644B"
},
{
"criteria": "cpe:2.3:a:thegr:dl:0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "527A4486-28E4-4F07-B223-06A86B46D918"
},
{
"criteria": "cpe:2.3:a:thegr:dl:0.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F714D804-D6EA-4669-A990-D3855D26FA11"
},
{
"criteria": "cpe:2.3:a:thegr:dl:0.8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9AB8D683-3BEB-4481-BEDD-1342F247D451"
},
{
"criteria": "cpe:2.3:a:thegr:dl:0.9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0BB49D27-8D61-4E98-A52D-39BA68B8CEA5"
}
],
"operator": "OR"
}
]
}
]