Lucene search
MitreCVELIST:CVE-2006-0232HistoryApr 25, 2006 - 1:00 a.m.
CVE-2006-0232
2006-04-2501:00:00
mitre
www.cve.org
2
Symantec Scan Engine 5.0.0.24, and possibly other versions before 5.1.0.7, stores sensitive log and virus definition files under the web root with insufficient access control, which allows remote attackers to obtain the information via direct requests.
References
archives.neohapsis.com/archives/vulnwatch/2006-q2/0012.html
secunia.com/advisories/19734
securityreason.com/securityalert/758
securityreason.com/securityalert/759
securitytracker.com/id?1015974
www.securityfocus.com/archive/1/431728/100/0/threaded
www.securityfocus.com/archive/1/431734/100/0/threaded
www.securityfocus.com/bid/17637
www.symantec.com/avcenter/security/Content/2006.04.21.html
www.vupen.com/english/advisories/2006/1464
exchange.xforce.ibmcloud.com/vulnerabilities/25974
Related
cve
cve
CVE-2006-0232
2006-04-25 01:02:00
prion
prion
Improper access control
2006-04-25 01:02:00
securityvulns
securityvulns
Rapid7 Advisory R7-0023: Symantec Scan Engine File Disclosure Vulnerability
2006-04-22 00:00:00
nvd
nvd
CVE-2006-0232
2006-04-25 01:02:00
nessus
nessus
Symantec AntiVirus Scan Engine Web Interface Multiple Remote Vulnerabilities
2006-04-24 00:00:00