>> OpenCA Data Processing Cross Site Request Forgery Vulnerabilities
Title : OpenCA Data Processing Cross Site Request Forgery Vulnerabilities VUPEN ID : VUPEN/ADV-2008-0588 CVE ID : CVE-2008-0556
Rated as : Low Risk
Remotely Exploitable : Yes Locally Exploitable : Yes Release Date : 2008-02-18
Technical Description
Multiple vulnerabilities have been identified in OpenCA, which could be exploited to manipulate certain data. These vulnerabilities are caused by errors in various CGI scripts that do not validate certain HTTP requests, which could be exploited by attackers to conduct cross-site request forgery attacks and issue arbitrary certificates.
