Lucent 8.x - VitalNet Password Authentication Bypass

Author: Mark Cooper
type: remote
platform: windows
port: 
date_added: 2002-01-16 
date_updated: 2012-09-09 
verified: 1 
codes: CVE-2002-0236;OSVDB-4261 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/3784/info

VitalNet is part of Lucent's VitalSuite SP product family. VitalNet allows users to monitor, analyze, manage and predict the performance of their network infrastructure.

The implementation of VitalNet's cookie-based authentication mechanism is flawed. An attacker who successfully guesses a correct username can gain access to the server without need of a valid password.

http://<serverip>/cgi-bin/VsSetCookie.exe?vsuser=<user_name>