ID CVE-2008-6375Type cveReporter NVDModified 2017-08-16T21:29:14
Description
JBook stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to userids.mdb.
{"id": "CVE-2008-6375", "bulletinFamily": "NVD", "title": "CVE-2008-6375", "description": "JBook stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to userids.mdb.", "published": "2009-03-02T14:30:00", "modified": "2017-08-16T21:29:14", "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6375", "reporter": "NVD", "references": ["https://exchange.xforce.ibmcloud.com/vulnerabilities/47034", "http://packetstormsecurity.org/0812-exploits/jbook-disclosesql.txt"], "cvelist": ["CVE-2008-6375"], "type": "cve", "lastseen": "2017-08-17T11:14:04", "history": [{"bulletin": {"assessment": {"href": "", "name": "", "system": ""}, "bulletinFamily": "NVD", "cpe": ["cpe:/a:nexusjnr:jbook:-"], "cvelist": ["CVE-2008-6375"], "cvss": {"score": 5.0, "vector": "AV:NETWORK/AC:LOW/Au:NONE/C:PARTIAL/I:NONE/A:NONE/"}, "description": "JBook stores sensitive information under the web root with insufficient access control, which allows remote attackers to download the database file via a direct request to userids.mdb.", "edition": 1, "enchantments": {}, "hash": "45dd6e18bdaee1063342474b9486164f435dde85b51360bd3eac8c14d2954487", "hashmap": [{"hash": "85c3b66b5174d5e9113351f7e5cd249d", "key": "description"}, {"hash": "d41d8cd98f00b204e9800998ecf8427e", "key": "scanner"}, {"hash": "26ee9e7aa37043260b80bfb44b4cd25a", "key": "modified"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "reporter"}, {"hash": "10139baac20189728d5da2d01412804f", "key": "published"}, {"hash": "6d3f4796275bb54c21a33b82f399cc6d", "key": "assessment"}, {"hash": "55cb4d9662486a673e9a348ea45ec1fd", "key": "title"}, {"hash": "1716b5fcbb7121af74efdc153d0166c5", "key": "type"}, {"hash": "a792e2393dff1e200b885c5245988f6f", "key": "cvss"}, {"hash": "75750a284b2ef9a23f3d3bb3bddf369e", "key": "cvelist"}, {"hash": "601892ece72be3be2f57266ca2354792", "key": "bulletinFamily"}, {"hash": "fbae8506e57e240e24e577ba5c1c405f", "key": "href"}, {"hash": "11f444c615060141467f69eced3c5d42", "key": "references"}, {"hash": "2378c2d820a5756364f455f9a7134e03", "key": "cpe"}], "history": [], "href": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2008-6375", "id": "CVE-2008-6375", "lastseen": "2016-09-03T11:40:22", "modified": "2009-07-22T00:00:00", "objectVersion": "1.2", "published": "2009-03-02T14:30:00", "references": ["http://xforce.iss.net/xforce/xfdb/47034", "http://packetstormsecurity.org/0812-exploits/jbook-disclosesql.txt"], "reporter": "NVD", "scanner": [], "title": "CVE-2008-6375", "type": "cve", "viewCount": 0}, "differentElements": ["references", "modified"], "edition": 1, "lastseen": "2016-09-03T11:40:22"}], "edition": 2, "hashmap": [{"key": "assessment", "hash": "6d3f4796275bb54c21a33b82f399cc6d"}, {"key": "bulletinFamily", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "cpe", "hash": "2378c2d820a5756364f455f9a7134e03"}, {"key": "cvelist", "hash": "75750a284b2ef9a23f3d3bb3bddf369e"}, {"key": "cvss", "hash": "a792e2393dff1e200b885c5245988f6f"}, {"key": "description", "hash": "85c3b66b5174d5e9113351f7e5cd249d"}, {"key": "href", "hash": "fbae8506e57e240e24e577ba5c1c405f"}, {"key": "modified", "hash": "513dc31759653d4a51af160a4f9773f4"}, {"key": "published", "hash": "10139baac20189728d5da2d01412804f"}, {"key": "references", "hash": "b1e08ad1319f6d4d06e8bf45450a2cb8"}, {"key": "reporter", "hash": "601892ece72be3be2f57266ca2354792"}, {"key": "scanner", "hash": "d41d8cd98f00b204e9800998ecf8427e"}, {"key": "title", "hash": "55cb4d9662486a673e9a348ea45ec1fd"}, {"key": "type", "hash": "1716b5fcbb7121af74efdc153d0166c5"}], "hash": "184e16531939a18debedcc80f3b4fd662bafbe86e075e5d3566d708fb51d3740", "viewCount": 0, "enchantments": {"score": {"value": 5.0, "vector": "NONE", "modified": "2017-08-17T11:14:04"}, "dependencies": {"references": [], "modified": "2017-08-17T11:14:04"}, "vulnersScore": 5.0}, "objectVersion": "1.3", "cpe": ["cpe:/a:nexusjnr:jbook:-"], "assessment": {"href": "", "name": "", "system": ""}, "scanner": []}
{}
