Signature Detail
Short Name |
HTTP:INFO-LEAK:WWWBOARD-PASSWD |
|---|---|
Severity |
Medium |
Recommended |
No |
Category |
HTTP |
Keywords |
wwwboard |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+ |
HTTP: WWWBoard Password File Access
This signature detects access to the wwwboard passwd.txt file. Attackers can access encrypted passwords for a future dictionary attack.
Extended Description
The file containing password information can be disclosed, which could allow further access to the site at Administrator level privileges.
References
- CVE: CVE-1999-0953