Vulnerabilities > CVE-2006-6350 - Remote Security vulnerability in Iisworks Listpics 5.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
COMPLETE Integrity impact
COMPLETE Availability impact
COMPLETE Summary
listpics 5 stores sensitive data under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for listpics.mdb.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |