ACS Blog inc_login_check.asp Cookie Modification Admin Privilege Escalation
Remote / Network Access
Loss of Integrity
ACS Blog contains a flaw that may allow a remote attacker to gain access to unauthorized privileges. The issue is triggered when sending a specially crafted cookie to the "inc_login_check.asp" script, which may allow a remote attacker to gain access to administrative privileges, resulting in a loss of integrity.
Currently, there are no known upgrades, patches, or workarounds available to correct this issue.