Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> Ocean12 Database Download


Vulnerability Assessment Details

Ocean12 Database Download

Vulnerability Assessment Summary
Checks for Ocean12 guestbook

Detailed Explanation for this Vulnerability Assessment

The remote server is running Ocean12 GuestBook, a set of scripts
to manage an interactive guestbook.

A possible hacker may download the database 'o12guest.mdb'
and use it to extract the password of the admninistrator
of these CGIs.

Solution : Block the download of .mdb files from your web server.
Network Security Threat Level: Medium

Networks Security ID: 7328

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Renaud Deraison

Cables, Connectors

IBM SYSTEM X3650 M5 2.5 SERVER TWO E5-2683V4 2.1GHZ 384GB 6 X 600GB 10K 6G
$14419.0
IBM SYSTEM X3650 M5 2.5 SERVER TWO E5-2683V4 2.1GHZ 384GB 6 X 600GB 10K 6G pictureIBM FLEX SYSTEM X240 M5 9532 TWO E5-2603V3 1.6GHZ 128GB 2 X 1TB 6G SATA
$6849.0
IBM FLEX SYSTEM X240 M5 9532 TWO E5-2603V3 1.6GHZ 128GB 2 X 1TB 6G SATA pictureIBM FLEX SYSTEM X240 M5 9532 TWO E5-2630V3 2.4GHZ 64GB 800GB SSD SAS
$6589.0
IBM FLEX SYSTEM X240 M5 9532 TWO E5-2630V3 2.4GHZ 64GB 800GB SSD SAS pictureIBM HS23E BLADECENTER SERVER E5-2420 1.90GHZ 48GB 2 X 300GB 10K SAS
$1799.0
IBM HS23E BLADECENTER SERVER E5-2420 1.90GHZ 48GB 2 X 300GB 10K SAS picture


Discussions

No Discussions have been posted on this vulnerability.