Microsoft Office InfoPath 2003 SP1 includes sensitive information in the Manifest.xsf file in a custom .xsn form, which allows attackers to obtain printer and network information, obtain the database name, username, and password, or obtain the internal web server name.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2005-03-20T05:00:00
Updated: 2005-12-20T10:00:00
Reserved: 2005-03-20T00:00:00
Link: CVE-2005-0820
JSON object: View
NVD Information
Status : Analyzed
Published: 2005-05-02T04:00:00.000
Modified: 2008-09-05T20:47:25.317
Link: CVE-2005-0820
JSON object: View
Redhat Information
No data.
CWE