Overview :
drupal6: SA-CORE-2010-002 – Drupal core – Multiple vulnerabilities
Affected Product(s) :
  • Drupal6 version 6.16
Vulnerability Details :
CVE ID :CVE-2010-2471
DRUPAL-SA-CORE-2010-002 from 2010-08-12 includes several vulnerabilities, some of them allowing malicious site identifying as existing users and gaining administrative access.

Solution :

Fixed in versions drupal6/6.18-1, drupal6/6.6-3lenny6