Back to search
CVE-2006-3290
Published: Jun 28, 2006
Modified: Aug 7, 2024
PUBLISHED
Description
HTTP server in Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain usernames and directory paths via a direct URL request.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
ADV-2006-2583
vdb-entry
x_refsource_VUPEN
20870
third-party-advisory
x_refsource_SECUNIA
cisco-wcs-http-information-disclosure(27442)
vdb-entry
x_refsource_XF
20060628 Multiple Vulnerabilities in Wireless Control System
vendor-advisory
x_refsource_CISCO
1016398
vdb-entry
x_refsource_SECTRACK
26879
vdb-entry
x_refsource_OSVDB
18701
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now