2 matches found
CVE-2005-3414
eyeOS 0.8.4 stores usrinfo.xml under the web document root with insufficient access control, which allows remote attackers to obtain user credentials...
CVE-2005-3414
CVE-2005-3414 affects eyeOS 0.8.4. The issue arises from storing usrinfo.xml in the web document root with insufficient access control, allowing remote attackers to obtain user credentials. The available connected documents confirm eyeOS 0.8.4 and the credential exposure risk, but do not provide ...