CVE-2005-3728

Properties

Published:
20.11.2005
Updated:
21.11.2005
Patch available:
Severity:
Low
  • CVSS vector:
    (AV:R/AC:L/Au:NR/C:P/I:N/A:N/B:N)
    Product:
    Revize CMS: Revize CMS

    Vulnerability description

    Idetix Software Systems Revize CMS stores conf/revize.xml under the web document root with insufficient access control, which allows remote attackers to obtain sensitive configuration information.

    References:

    http://lostmon.blogspot.com/2005/11/revizer-cms-sql-information-disclosure.html: http://lostmon.blogspot.com/2005/11/revizer-cms-sql-information-disclosure.html
    BID: http://www.securityfocus.com/bid/15482
    SECTRACK: http://securitytracker.com/id?1015231
    SECUNIA: http://secunia.com/advisories/17623