Tencent WBlog and MicroBlogPad Remote Unauthorized Access Vulnerability
BID:51688
Info
Tencent WBlog and MicroBlogPad Remote Unauthorized Access Vulnerability
| Bugtraq ID: | 51688 |
| Class: | Design Error |
| CVE: |
CVE-2011-4865 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 26 2012 12:00AM |
| Updated: | Jan 26 2012 12:00AM |
| Credit: | AppSec |
| Vulnerable: |
Tencent WBlog 3.3.1 Tencent MicroBlogPad 1.4 |
| Not Vulnerable: | |
Discussion
Tencent WBlog and MicroBlogPad Remote Unauthorized Access Vulnerability
WBlog and MicroBlogPad are prone to a remote unauthorized access vulnerability.
An attacker can exploit this issue to read or modify information protected by the applications. This may aid in further attacks.
WBlog 3.3.1 and MicroBlogPad 1.4.0 are affected; other versions may also be vulnerable.
WBlog and MicroBlogPad are prone to a remote unauthorized access vulnerability.
An attacker can exploit this issue to read or modify information protected by the applications. This may aid in further attacks.
WBlog 3.3.1 and MicroBlogPad 1.4.0 are affected; other versions may also be vulnerable.
Exploit / POC
Tencent WBlog and MicroBlogPad Remote Unauthorized Access Vulnerability
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Tencent WBlog and MicroBlogPad Remote Unauthorized Access Vulnerability
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution:
Currently we are not aware of any vendor-supplied patches. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].