QwikSec

Security Database

CVE

CWE

Training

CVE-2007-4151

Published: Aug 3, 2007

Modified: Aug 7, 2024

PUBLISHED

Description

The Visionsoft Audit on Demand Service (VSAOD) in Visionsoft Audit 12.4.0.0 allows remote attackers to obtain sensitive information via (1) a LOG.ON command, which reveals the logging pathname in the server response; (2) a VER command, which reveals the version number in the server response; and (3) a connection, which reveals the version number in the banner.

Vendor	Product	Versions
n/a	n/a	affected `n/a`

References

http://www.portcullis.co.uk/uplds/advisories/vaversiondisclosure%2006_046.txt

x_refsource_MISC

vdb-entry

x_refsource_BID

vdb-entry

x_refsource_OSVDB

http://www.portcullis.co.uk/uplds/advisories/vapathdisclosure%2006-043.txt

x_refsource_MISC

vdb-entry

x_refsource_OSVDB

vdb-entry

x_refsource_OSVDB

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.