Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-6815


Vulnerability Score 5.0 5.0
CVE Id CVE-2008-6815
Last Modified 28 May 2009 12:00:00
Published 28 May 2009 10:30:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



mykdownload.php in MyKtools 2.4 does not require administrative authentication, which allows remote attackers to read a database backup by making a direct request, and then sending an unspecified request to the download page for the backup.

Vulnerable Systems


  • Myktools 2.4


XF - myktools-mykdownload-info-disclosure(46145)

BID - 31950

MILW0RM - 6855

Last Updated: 27 May 2016 10:49:21