Vulnerabilities > CVE-2004-1788 - Unspecified vulnerability in Asp-Nuke 1.0/1.2/1.3
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN asp-nuke
exploit available
Summary
ASP-Nuke 1.3 and earlier places user credentials under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information via a direct request to main.mdb.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | ASP-Nuke 1.0/1.2/1.3 Remote User Database Access Vulnerability. CVE-2004-1788. Webapps exploit for asp platform |
| id | EDB-ID:23516 |
| last seen | 2016-02-02 |
| modified | 2004-01-04 |
| published | 2004-01-04 |
| reporter | Vietnamese Security Group |
| source | https://www.exploit-db.com/download/23516/ |
| title | ASP-Nuke 1.0/1.2/1.3 - Remote User Database Access Vulnerability |