CVE-2002-1149

Sažetak

The installation procedure for Invision Board suggests that users install the phpinfo.php program under the web root, which leaks sensitive information such as absolute pathnames, OS information, and PHP settings.

Reference

http://marc.info/?l=bugtraq&m=103290602609197&w=2
http://www.iss.net/security_center/static/10178.php
http://www.osvdb.org/3356
http://www.securityfocus.com/bid/5789

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

18-10-2016 - 02:24

Objavljeno

11-10-2002 - 04:00