Computer Security

Security Advisory: aeNovo Database Content Disclosure Vulnerability
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  PHP, ASP, CGI web applications security vulnerabilities

  [SA14579] Spinworks Application Server Web Server Denial of Service

  KnowledgeBase

  [SECURITYREASON.COM]  Mass Full Path Disclosure in paFileDB

  Virginity Security Advisory 2005-001 : Hola CMS - File    destruction and System access

From:farhad koosha <farhadkey_(at)_yahoo.com>
Date:14.03.2005
Subject:aeNovo Database Content Disclosure Vulnerability



The problem is that the aeNovo database file "dbase/aeNovo1.mdb" by default
is accessible. you can disclose the ADMIN's password .
The Login Page : "logon.asp"

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru