Vulnerabilities > CVE-2004-1786 - Remote User Database Access vulnerability in ASPApp PortalAPP
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
PortalApp places user credentials under the web root with insufficient access control, which allows remote attackers to gain access to sensitive information via a direct request to 8275.mdb.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | ASPApp PortalAPP 0 Remote User Database Access Vulnerability. CVE-2004-1786. Webapps exploit for asp platform |
id | EDB-ID:23515 |
last seen | 2016-02-02 |
modified | 2004-01-04 |
published | 2004-01-04 |
reporter | newbie6290 |
source | https://www.exploit-db.com/download/23515/ |
title | ASPApp PortalAPP - Remote User Database Access Vulnerability |