Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0843

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2006-0843
Last Modified 05 Sep 2008 05:00:22
Published 21 Feb 2006 09:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-0843

Summary

Leif M. Wright's Blog 3.5 stores the config file and other txt files under the web root with insufficient access control, which allows remote attackers to read the administrator's password.

Vulnerable Systems

Application

  • Leif M. Wright Web Blog 3.5


References

BID - 16712

MISC - http://www.evuln.com/vulns/82/summary.html

SECUNIA - 18923

XF - webblog-txt-obtain-information(24752)

SREASON - 522


Last Updated: 27 May 2016 10:41:49