header-logo
Suggest Exploit
vendor:
MSMS
by:
5.5
CVSS
MEDIUM
Information Disclosure
200
CWE
Product Name: MSMS
Affected Version From: 2000.2.1
Affected Version To:
Patch Exists: NO
Related CWE:
CPE: a:modular_site_management_system:msms:0.2.1
Metasploit:
Other Scripts:
Platforms Tested:

Modular Site Management System Information Disclosure

Modular Site Management System (MSMS) is prone to an information disclosure issue that could allow an attacker to gain access to a server's configuration information. The vulnerability exists in version 0.2.1, but other versions may also be affected.

Mitigation:

No known mitigation or remediation is available at this time. It is recommended to update to the latest version of MSMS or to implement access controls to restrict unauthorized access to the server's configuration information.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/10208/info

It has been reported that Modular Site Management System may be prone to an information disclosure issue that could allow an attacker to gain access to a server's configuration information.

MSMS version 0.2.1 is reported to be affected by this issue, however, it is possible that other versions are vulnerable as well.

http://www.example.com/msms/ver.asp

Navigation

Suggest Exploit

Services By CQR