CVE-2007-3774
Summary
Dvbbs 7.1.0 SP1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for Data/Dvbbs7.mdb.
- LOW
- NETWORK
- NONE
- NONE
- COMPLETE
- NONE
References
Advisory Timeline
- Published