OSVDB ID: 18558 Title: Kathi O'Shea Guestbook Guestbook.mdb User Database Remote Disclosure |
Info |
|
|
Dates |
||||
|
|
Description |
Guestbook contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when the guestbook.mdb file is stored in the server root by default, which will allow direct access to download the database file. |
Classification |
Location:
Remote/Network Access Required
Attack Type: Information Disclosure Impact: Loss of Confidentiality Exploit: Exploit Available OSVDB: Web Related |
Solution |
Currently, there are no known upgrades, patches, or workarounds available to correct this issue. |
Products |
|
References |
Credit |
|
hotmail.com - Personal Site