2 matches found
CVE-2014-3006
CVE-2014-3006 affects Sitepark Information Enterprise Server (IES) versions 2.9 up to 2.9.6. When upgrading from a prior version, the installer portion at /ies/install could remain exposed, enabling unauthenticated remote attackers to reset the manager password and view sensitive installation dat...
LSE Leading Security Experts GmbH - LSE-2014-04-10 - Sitepark IES - Unauthenticated Access
=== LSE Leading Security Experts GmbH - Security Advisory 2014-04-10 === Sitepark Information Enterprise Server IES - Unauthenticated Access --------------------------------------------------------------------- Affected Versions ================= Information Enterprise Server IES Version 2.9 unti...