CVE-2007-3252
Summary
PortalApp stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for 8691.mdb, a different vector than CVE-2004-1786.
- LOW
- NETWORK
- NONE
- NONE
- COMPLETE
- NONE
References
Advisory Timeline
- Published