← back
CVE-2006-5725

CVE-2006-5725

EPSS 2.8%
The SSL server in AEP Smartgate 4.3b allows remote attackers to determine existence of directories via a direct request for a directory URI, which returns different HTTP status codes for existing and non-existing directories.
Affected products
n/a · n/a
public PoCs found1
cve_referencewww.exploit-db.com/exploits/2637unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://secunia.com/advisories/22550https://exchange.xforce.ibmcloud.com/vulnerabilities/29802https://prdelka.blackart.org.uk/exploitz/prdelka-vs-AEP-smartgate.chttps://www.exploit-db.com/exploits/2637http://www.vupen.com/english/advisories/2006/4224