← CVECheck
HomeVulnerabilities

CVE-2002-0776 — HIGH severity vulnerability (getuserdesc.asp in Hosting Controller 2002 allows remote att)

getuserdesc.asp in Hosting Controller 2002 allows remote attackers to change the passwords of arbitrary users and gain privileges by modifying the username parameter, as addressed by the "UpdateUser" hot fix.

CVE IDCVE-2002-0776
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-08-12
Last modified2026-04-16
Descriptiongetuserdesc.asp in Hosting Controller 2002 allows remote attackers to change the passwords of arbitrary users and gain privileges by modifying the username parameter, as addressed by the "UpdateUser" hot fix.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →