Ocean12 ASP Calendar Administrative Interface Access
High Nessus Network Monitor Plugin ID 2540
SynopsisThe remote host is vulnerable to a flaw that allows for the bypassing of authentication.
DescriptionThe remote host is running Ocean12 ASP Calendar, a web based
application written in ASP.
There is a flaw in the remote software that may allow anyone
to execute admnistrative commands on the remote host by requesting
the page /admin/main.asp.
An attacker may exploit this flaw to deface the remote site without
SolutionNo solution is known at this time.