CVE Vulnerabilities

CVE-2004-1219

Published: Jan 10, 2005 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

paFileDB 3.1, when using sessions authentication and while the administrator logs on, allows remote attackers to read the administrators password hash and conduct brute force password guessing attacks by listing the contents of the sessions directory and reading the associated file for the administrator session.

Affected Software

Name Vendor Start Version End Version
Pafiledb Php_arena 3.1 (including) 3.1 (including)

References