[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
aeNovo Database Content Disclosure Vulnerability
- To: bugtraq@xxxxxxxxxxxxxxxxx
- Subject: aeNovo Database Content Disclosure Vulnerability
- From: farhad koosha <farhadkey@xxxxxxxxx>
- Date: 12 Mar 2005 17:59:09 -0000
The problem is that the aeNovo database file "dbase/aeNovo1.mdb" by default is
accessible. you can disclose the ADMIN's password .
The Login Page : "logon.asp"