header-logo
Suggest Exploit
vendor:
ASP-Nuke
by:
SecurityFocus
7.5
CVSS
HIGH
Unauthorized Access
287
CWE
Product Name: ASP-Nuke
Affected Version From: ASP-Nuke 0.6.2
Affected Version To: ASP-Nuke 0.6.2
Patch Exists: YES
Related CWE: CVE-2003-0252
CPE: o:asp-nuke:asp-nuke:0.6.2
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2003

Unauthorized Access in ASP-Nuke

ASP-Nuke is vulnerable to an unauthorized access attack when user credentials are stored on the system. An attacker can gain access to sensitive information by accessing the main.mdb file located in the db directory.

Mitigation:

To mitigate this vulnerability, user credentials should not be stored on the system.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/9355/info

A problem has been identified in ASP-Nuke when user credentials are stored on a system. Because of this, an attacker may be able to gain unauthorized access to sensitive information.

http://www.example.com/db/main.mdb

Navigation

Suggest Exploit

Services By CQR