Summary
The host is installed with DotNetNuke and is prone to Information Disclosure vulnerability.
Impact
Successful exploitation could allow remote attackers to view the install wizard page and obtain sensitive information.
Impact Level: Application
Solution
Upgrade to DotNetNuke version 4.9.0/5.0.1 or latest For updates refer to http://www.dotnetnuke.com/
Insight
An unspecified vulnerability in DotNetNuke which could allow a remote attackers to gain unauthorised information.
Affected
DotNetNuke versions 4.0 to 4.8.4 and 5.0
References
Severity
Classification
-
CVE CVE-2008-7101 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache Tomcat RemoteFilterValve Security Bypass Vulnerability
- Apache Archiva Cross Site Request Forgery Vulnerability
- Adobe Presenter viewer.swf and loadflash.js XSS Vulnerability
- Apache Web Server Configuration File Environment Variable Local Buffer Overflow Vulnerability
- Apache CouchDB Cross Site Request Forgery Vulnerability