CVE-2012-4976

2012-12-12T06:38:44
ID CVE-2012-4976
Type cve
Reporter NVD
Modified 2012-12-12T00:00:00

Description

selectawasset.asp in Layton Helpbox 4.4.0 allows remote attackers to discover ODBC database credentials via an element=sys_asset_id request, which is not properly handled during construction of an error page.