Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1812

Overview

Vulnerability Score 6.4 6.4
CVE Id CVE-2006-1812
Last Modified 05 Sep 2008 05:02:54
Published 18 Apr 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2006-1812

Summary

phpWebFTP 3.2 and earlier stores script.js under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information.

Vulnerable Systems

Application

  • Phpwebftp 3.2


References

BID - 17557

BUGTRAQ - 20060417 PhpWebFTP 3.2 Login Script

XF - phpwebftp-scriptjs-obtain-information(25921)

SECUNIA - 19706


Last Updated: 27 May 2016 10:42:14