Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6357


Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6357
Last Modified 18 Mar 2009 01:48:00
Published 02 Mar 2009 11:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



MyCal Personal Events Calendar stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request to mycal.mdb.

Vulnerable Systems


  • Donnafontenot Mycal Personal Events Calendar -


XF - mycal-mycal-information-disclosure(47266)

MILW0RM - 7420

SECUNIA - 34261

Last Updated: 27 May 2016 10:49:10