Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Positive Software H-Sphere Winbox 2.4 - Sensitive Logfile Content Disclosure

Related Vulnerabilities: CVE-2005-1606  
Publish Date: 09 May 2005
Author: Morning Wood
Source / Download Exploit 
                							

                source: http://www.securityfocus.com/bid/13559/info

It is reported that Positive Software H-Sphere Winbox stores user account information in a plaintext format inside of application log files.

As a result, user credentials could be exposed to other local users who have permissions to access the log files. 

C:\HSphere.NET\log\action.log
C:\HSphere.NET\log\resources.log

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook

Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started