Secunia Logo  


Secunia PSI WorldMap
 
CVE Reference: CVE-2004-2060
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2004-2060

Description:
ASPRunner 2.4 stores the database under the web root in the db directory, which may allow remote attackers to obtain the database via a direct request to the database filename, which is predictable based on table and field names.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/16802

VULNWATCH
  http://archives.neohapsis.com/archives/vulnwatch/2004-q3/0011.html

ST
  1010777

SAID
  Secunia Advisory: SA12164

OSVDB
  8253

MISC
  http://ferruh.mavituna.com/article/?574

BUGTRAQ
  http://marc.theaimsgroup.com/?l=bugtraq&m=109086977330418&w=2

BID
  10799


Return to the previous page.