← volver
CVE-2005-0695

CVE-2005-0695

EPSS 1.4%
The password recovery feature (forgotpassword.asp) in Hosting Controller 6.1 Hotfix 1.7 and earlier allows remote attackers to determine the owner's e-mail address by providing a portion of the domain name to the "login ID" field.
Productos afectados
n/a · n/a

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →
Referencias
http://isun.shabgard.org/hc2.txthttp://marc.info/?l=bugtraq&m=111026083314947&w=2http://secunia.com/advisories/14522