|
Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com |
Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability
From: JeiAr (security
gulftech.org)
Date: Fri Mar 05 2004 - 11:18:26 CST
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]
In-Reply-To: <20040305130832.64623.qmailweb25104.mail.ukl.yahoo.com>
This "vulnerability" was actually reported by GulfTech Security on March 2nd
http://www.gulftech.org/03022004.php
and posted on the governmentsecurity.org message board March 3rd
http://www.governmentsecurity.org/forum/index.php?showtopic=7008
>~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*
>
>Product: Invision Power Board
> http://www.invisionboard.com
>Versions: 1.3 Final (and probably lower)
>Bug: Disclosure of install path
>Impact: Attacker learns the local install
> path of Invision Power Board and the
> htdocs
>Date: March 05, 2004
>Author: Shaun Colley
> Email: shaunigeyahoo.co.uk
> WWW: http://www.nettwerked.co.uk
>
>~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*
>
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]