PT-2006-6963 · Unknown · Khaledmuratlist

Blaster

Published

2006-12-07

Updated

2018-10-17

CVE-2006-6351

CVSS v2.0

High

Vector

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions KhaledMuratList (affected versions not specified)

Description The issue concerns the storage of sensitive data under the web root with insufficient access control. This allows remote attackers to download a database via a direct request for specific files, such as CL2F9R1A2C1N.mdb or Data2F9R1A2C1N.mdb.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2006-6351

Affected Products

Khaledmuratlist

PT-2006-6963 · Unknown · Khaledmuratlist

CVE-2006-6351

Related Identifiers

Affected Products

References · 5