CVE-2016-6603

CRITICAL

ZOHO WebNMS Framework 5.2-5.2 SP1 - Auth Bypass

Title source: llm

Description

ZOHO WebNMS Framework 5.2 and 5.2 SP1 allows remote attackers to bypass authentication and impersonate arbitrary users via the UserName HTTP header.

Exploits (1)

exploitdb WRITEUP

by Pedro Ribeiro · textwebappsjsp

https://www.exploit-db.com/exploits/40229

View Code ZIP pw:eip

References (8)

[Exploit, Third Party Advisory, VDB Entry] http://packetstormsecurity.com/files/138244/WebNMS-Framework-5.2-SP1-Traversal-Weak-Obfuscation-User-Impersonation.html

[Exploit, Mailing List, Third Party Advisory] http://seclists.org/fulldisclosure/2016/Aug/54

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/92402

[Exploit, Technical Description, Third Party Advisory] https://blogs.securiteam.com/index.php/archives/2712

[Various Sources] https://forums.webnms.com/topic/recent-vulnerabilities-in-webnms-and-how-to-protect-the-server-against-them

[Exploit, Third Party Advisory] https://github.com/pedrib/PoC/blob/master/advisories/webnms-5.2-sp1-pwn.txt

[Exploit, Third Party Advisory, VDB Entry] https://www.exploit-db.com/exploits/40229/

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/archive/1/539159/100/0/threaded

Scores

CVSS v3 9.8

EPSS 0.7032

EPSS Percentile 98.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-20

Status published

Products (1)

zohocorp/webnms_framework 5.2 (2 CPE variants)

Published Jan 23, 2017

Tracked Since Feb 18, 2026