CVE-2009-1466
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
CVE
CVE-2009-1466
Status
UNKNOWN
Description
Application Access Server (A-A-S) 2.0.48 stores (1) passwords and (2) the port keyword in cleartext in aas.ini, which allows local users to obtain sensitive information by reading this file.
Severity
Low
CVSS score
2,1
CVSS vector
(AV:L/AC:L/Au:N/C:P/I:N/A:N)
Phase
ASSIGNED (23.05.2009)
NVD:
http://nvd.nist.gov/nvd.cfm?cvename=CVE-2009-1466
References
BID :
34911
BUGTRAQ :
20090512 Syhunt: A-A-S (Application Access Server) Multiple Security Vulnerabilities
MISC :
http://www.syhunt.com/advisories/?id=aas-multiple
SECTRACK :
1022204
XF :
aas-aas-info-disclosure(50590)
SecurityVulns:
Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
