CVE-2014-1217

2014-04-28T10:09:06
ID CVE-2014-1217
Type cve
Reporter NVD
Modified 2014-04-29T08:09:11

Description

Livetecs Timelive before 6.2.8 does not properly restrict access to systemsetting.aspx, which allows remote attackers to change configurations and obtain the database connection string and credentials via unspecified vectors.