Hosting Controller 6.1 stores forum/db/forum.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as user name and password credentials. NOTE: the provenance of this information is unknown; the details are obtained from third party information.
Name | Vendor | Start Version | End Version |
---|---|---|---|
Hosting_controller | Hosting_controller | 6.1_hotfix_1.4 | 6.1_hotfix_1.4 |
Hosting_controller | Hosting_controller | 1.1 | 1.1 |
Hosting_controller | Hosting_controller | 1.3 | 1.3 |
Hosting_controller | Hosting_controller | 6.1_hotfix_1.9 | 6.1_hotfix_1.9 |
Hosting_controller | Hosting_controller | 6.1_hotfix_2.8 | 6.1_hotfix_2.8 |
Hosting_controller | Hosting_controller | 6.1_hotfix_2.3 | 6.1_hotfix_2.3 |
Hosting_controller | Hosting_controller | 2002 | 2002 |
Hosting_controller | Hosting_controller | 6.1_hotfix_1.7 | 6.1_hotfix_1.7 |
Hosting_controller | Hosting_controller | 2002_rc_1 | 2002_rc_1 |
Hosting_controller | Hosting_controller | 1.4b | 1.4b |
Hosting_controller | Hosting_controller | 6.1_hotfix_2.1 | 6.1_hotfix_2.1 |
Hosting_controller | Hosting_controller | * | 6.1_hotfix_2.9 |
Hosting_controller | Hosting_controller | 6.1_hotfix_2.0 | 6.1_hotfix_2.0 |
Hosting_controller | Hosting_controller | 6.1 | 6.1 |
Hosting_controller | Hosting_controller | 1.4.1 | 1.4.1 |
Hosting_controller | Hosting_controller | 1.4 | 1.4 |