| 제목 | SGS Intergard v. 8.7.0 Denial of service by mass updating all users with an arbitrary password chosen by the adversary. |
|---|
| 설명 | Denial of service by mass updating all users with an arbitrary password chosen by the adversary.
With a valid user, whatever the privilege, it is possible to use the change password functionality of the user in question to strictly change the password of all system users in bulk to one chosen and known only by the attacker, leaving everyone without access to the system.
Company website: https://www.intergard.com.br/ |
|---|
| 원천 | ⚠️ https://www.youtube.com/watch?v=CtOFB-L1rOg |
|---|
| 사용자 | hiagomoura (UID 50347) |
|---|
| 제출 | 2023. 07. 11. AM 04:26 (3 연령 ago) |
|---|
| 모더레이션 | 2023. 07. 18. PM 09:30 (8 days later) |
|---|
| 상태 | 수락 |
|---|
| VulDB 항목 | 234445 [Intergard SGS 8.7.0 Change Password 서비스 거부] |
|---|
| 포인트들 | 16 |
|---|