CVE-2002-0097 Information

Description

Geeklog 1.3 allows remote attackers to hijack user accounts including the administrator account by modifying the UID of a user’s permanent cookie to the target account.

Reference

http://geeklog.sourceforge.net/index.php?topic=Security http://online.securityfocus.com/archive/1/249443 http://www.iss.net/security_center/static/7869.php http://www.securityfocus.com/bid/3844