CVE-2003-1553

EPSS 2.1%

Haakon Nilsen Simple Internet Publishing System (SIPS) 0.2.2 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain password and other user information via a direct request to a user-specific configuration directory.

Affected products

n/a · n/a

public PoCs found — 1

exploitdbwww.exploit-db.com/exploits/22381unverified

⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://securityreason.com/securityalert/3780 https://exchange.xforce.ibmcloud.com/vulnerabilities/11572 http://www.securityfocus.com/archive/1/315504/30/25460/threaded http://www.securityfocus.com/bid/7134