Microsoft Baseline Security Analyzer (MBSA) 1.0 stores security scans in a known location C:\Documents and Settings\username\SecurityScans in plaintext, which could allow remote malicious users to obtain sensitive information about the system via malicious active content such as ActiveX controls or Java.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft baseline security analyzer 1.0 |