Back to search
CVE-2004-1219
Published: Dec 15, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
paFileDB 3.1, when using sessions authentication and while the administrator logs on, allows remote attackers to read the administrator's password hash and conduct brute force password guessing attacks by listing the contents of the sessions directory and reading the associated file for the administrator session.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
http://echo.or.id/adv/adv09-y3dips-2004.txt
x_refsource_MISC
11818
vdb-entry
x_refsource_BID
pafiledb-session-information-disclosure(18364)
vdb-entry
x_refsource_XF
20041207 Multiple Vulnerabilities in paFileDB 3.1
mailing-list
x_refsource_BUGTRAQ
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now