Netbula Anyboard 9.9.5 6 - Information Disclosure

EDB-ID:

23059

CVE:

N/A




Platform:

CGI

Date:

2003-08-25


source: https://www.securityfocus.com/bid/8490/info

A vulnerability has been reported in Netbula Anyboard that may allow a remote attacker to gain access to sensitive data. This problem is due to an information disclosure issue that can be triggered by an attacker sending specific HTTP requests to a vulnerable host. This will result in sensitive information about the system being revealed to the attacker.

This vulnerability may allow an attack to gather sensitive information in order to launch further attacks against a vulnerable system. 

http://www.example.com/cgi-bin/anyboard.cgi/?cmd=sinfo&all=1