UPOINT @1 Event Publisher stores sensitive information under the web document root with insufifcient access control, which allows remote attackers to read private comments via a direct request to eventpublisher.txt.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2006-04-15T23:00:00
Updated: 2006-05-10T09:00:00
Reserved: 2006-03-28T00:00:00
Link: CVE-2006-1437
JSON object: View
NVD Information
Status : Analyzed
Published: 2006-04-15T23:02:00.000
Modified: 2008-09-05T21:01:54.390
Link: CVE-2006-1437
JSON object: View
Redhat Information
No data.
CWE