Summary
It is possible to download the remote SilverStream database structure by requesting :
http://www.example.com/SilverStream/Meta/Tables/?access-mode=text
An attacker may use this flaw to gain more knowledge about this host.
Reference : http://online.securityfocus.com/archive/101/144786
Solution
Reconfigure the server so that others
cannot view database structure
Severity
Classification
-
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- 2532|Gigs Directory Traversal And SQL Injection Multiple Vulnerabilities
- Apache Struts CookBook/Examples Multiple Cross-Site Scripting Vulnerabilities
- Adobe ColdFusion Multiple Path Disclosure Vulnerabilities
- Adobe ColdFusion Multiple Full Path Disclosure Vulnerabilities
- aeNovo Database Content Disclosure Vulnerability