3 matches found
CVE-2005-0695
The password recovery feature forgotpassword.asp in Hosting Controller 6.1 Hotfix 1.7 and earlier allows remote attackers to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field...
CVE-2005-0695
The CVE-2005-0695 issue affects Hosting Controller 6.1 Hotfix 1.7 and earlier, where the forgotpassword.asp password recovery flow can let a remote attacker infer the owner's e-mail address by submitting part of a domain in the login ID field. The underlying vulnerability is described as partial ...
CVE-2005-0695
The password recovery feature forgotpassword.asp in Hosting Controller 6.1 Hotfix 1.7 and earlier allows remote attackers to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field...