CVE-2000-0120
CVSS 2.0 Score 7.5 of 10 (high)
Details
Summary
CVE-2000-0120 is a vulnerability affecting Allaire Spectra 1.0's Remote Access Service. The issue lies within the invoke.cfm template, where the bAuthenticated parameter can be bypassed, enabling unauthenticated users to gain access to protected resources. This weakness poses a significant risk, as it allows attackers to bypass the authentication process and potentially access sensitive information or make unauthorized modifications. Organizations using this outdated software are advised to apply the available patch or upgrade to a more secure version as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Allaire