Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2004-2398

Опубликовано: 31 дек. 2004
Источник: nvd
CVSS2: 2.1
EPSS Низкий

Описание

Netenberg Fantastico De Luxe 2.8 uses database file names that contain the associated usernames, which allows local users to determine valid usernames and conduct brute force attacks by reading the file names from /var/lib/mysql, which is assigned world-readable permissions by cPanel 9.3.0 R5.

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:netenberg:fantastico_de_luxe:2.8:*:*:*:*:*:*:*

EPSS

Процентиль: 16%
0.00052
Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

github
больше 3 лет назад

Netenberg Fantastico De Luxe 2.8 uses database file names that contain the associated usernames, which allows local users to determine valid usernames and conduct brute force attacks by reading the file names from /var/lib/mysql, which is assigned world-readable permissions by cPanel 9.3.0 R5.

EPSS

Процентиль: 16%
0.00052
Низкий

2.1 Low

CVSS2

Дефекты

NVD-CWE-Other