Vulnerabilities > CVE-2006-0843 - Unspecified vulnerability in Leif M. Wright web Blog 3.5
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Leif M. Wright's Blog 3.5 stores the config file and other txt files under the web root with insufficient access control, which allows remote attackers to read the administrator's password.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/44315/EV0082.txt |
| id | PACKETSTORM:44315 |
| last seen | 2016-12-05 |
| published | 2006-03-03 |
| reporter | Aliaksandr Hartsuyeu |
| source | https://packetstormsecurity.com/files/44315/EV0082.txt.html |
| title | EV0082.txt |
References
- http://secunia.com/advisories/18923
- http://secunia.com/advisories/18923
- http://securityreason.com/securityalert/522
- http://securityreason.com/securityalert/522
- http://www.evuln.com/vulns/82/summary.html
- http://www.evuln.com/vulns/82/summary.html
- http://www.securityfocus.com/bid/16712
- http://www.securityfocus.com/bid/16712
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24752
- https://exchange.xforce.ibmcloud.com/vulnerabilities/24752