Computer Security
[EN] securityvulns.ru no-pyccku


Sun Ray Server password information leak
Published:24.01.2007
Source:
SecurityVulns ID:7106
Type:local
Threat Level:
5/10
Description:/cgi-bin/mail scripts records utadmin administrator's password is recorded into log file.
Affected:SUN : Sun Ray Server Software 3.0
 SUN : Sun Ray Server Software 2.0
CVE:CVE-2007-0482 (cgi-bin/main in Sun Ray Server Software 2.0 and 3.0 before 20070123 allows local users to obtain the utadmin password by reading a web server's log file, or by conducting a different, unspecified local attack.)
Original documentdocumentSECUNIA, [SA23900] Sun Ray Server Software Password Disclosure (24.01.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod