Описание
projectserver/logon/pdsrequest.asp in Microsoft Project Server 2003 allows remote authenticated users to obtain the MSProjectUser password for a SQL database via a GetInitializationData request, which includes the information in the UserName and Password tags of the response.
Ссылки
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:microsoft:project_server:2003:*:*:*:*:*:*:*
EPSS
Процентиль: 97%
0.3248
Средний
6.5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
projectserver/logon/pdsrequest.asp in Microsoft Project Server 2003 allows remote authenticated users to obtain the MSProjectUser password for a SQL database via a GetInitializationData request, which includes the information in the UserName and Password tags of the response.
EPSS
Процентиль: 97%
0.3248
Средний
6.5 Medium
CVSS2
Дефекты
NVD-CWE-Other