CVE-2006-4487

2006-08-31T22:04:00
ID CVE-2006-4487
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:37:00

Description

DUware DUpoll 3.0 and 3.1 stores _private/Dupoll.mdb under the web document root with insufficient access control, which allows remote attackers to obtain sensitive information such as usernames and passwords.