• Sign in

CVE-2003-1404

    CVE-2003-1404  
Description DotBr 0.1 stores config.inc with insufficient access control under the web document root, which allows remote attackers to obtain sensitive information such as SQL usernames and passwords.
Impact
  CVSS v2 : 7.5 HIGH  
Type
  CWE-200  
Attack Vector
CVSSv2 Vector : AV:N/AC:L/Au:N/C:P/I:P/A:P
Quick linksCVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References
http://archives.neohapsis.com/archives/vulnwatch/2003-q1/0070.html
http://www.osvdb.org/5092
http://www.securityfocus.com/bid/6865
https://exchange.xforce.ibmcloud.com/vulnerabilities/11354
  • FAQ
  • Terms of service
  • Privacy policy