CVE-2005-1648

Gurgens GASoft Ultimate Forum 1.0 stores the db/Genid.dat database file under the web document root with insufficient access control, which allows remote attackers to obtain and decrypt usernames and passwords...

ultimatedisclose.txt

Update: 12:15 AM 5/14/2005 Subject: " Ultimate Forum Password Database Vulnerability " Vulnerable version: Ultimate Forum 1.0 Description: Ultimate forum is an Open forum i.e. no logon restrictions or private areas. Forum is a text file based. Each forum is multithreaded and stored in a separate...

CVE-2005-1648

Gurgens GASoft Ultimate Forum 1.0 stores the db/Genid.dat database file under the web document root with insufficient access control, which allows remote attackers to obtain and decrypt usernames and passwords...

CVE-2005-1648

Gurgens GASoft Ultimate Forum 1.0 stores the db/Genid.dat database file under the web document root with insufficient access control, which allows remote attackers to obtain and decrypt usernames and passwords...

CVE-2005-1648

CVE-2005-1648 affects Gurgens (GASoft) Ultimate Forum 1.0. The vulnerability arises because the db/Genid.dat database file is stored under the web document root with insufficient access control, enabling remote attackers to obtain and decrypt usernames and passwords. The provided sources describe...

[SA15374] Ultimate Forum Exposure of Encrypted User Credentials

---------------------------------------------------------------------- Want a new IT Security job? Vacant positions at Secunia: http://secunia.com/secuniavacancies/ ---------------------------------------------------------------------- TITLE: Ultimate Forum Exposure of Encrypted User Credentials...