SIPS 0.2.2 User Information Disclosure Vulnerability

ID EDB-ID:22381
Type exploitdb
Reporter dwcgr0up
Modified 2003-03-18T00:00:00


SIPS 0.2.2 User Information Disclosure Vulnerability. CVE-2003-1553. Remote exploits for multiple platform


It has been reported that authentication is not required to view user account information. As a result, an unauthorized remote attacker may be able to view potentially sensitive information. This may aid in launching further attacks against a target user or system.[sips_directory]/sipssys/users/[first_letter_of_UserID]/