cPanel 5-9 - Killacct Script Customer Account DNS Information Deletion
| EKU-ID: 29587 | CVE: | OSVDB-ID: |
| Author: qbann targ | Published: 2004-06-05 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 29587 | CVE: | OSVDB-ID: |
| Author: qbann targ | Published: 2004-06-05 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/10468/info cPanel is prone to a vulnerability that can allow a remote authenticated administrator to delete customer account DNS information for customers that are not administered by that administrator. This attack can allow an attacker to cause a denial of service condition against vulnerable Web sites. http://www.example.com:2086/scripts/killacct?domain=(domain)&user=(user)&submit-domain=Terminate