Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> ZixForum Database Disclosure


Vulnerability Assessment Details

ZixForum Database Disclosure

Vulnerability Assessment Summary
Checks for ZixForum.mdb

Detailed Explanation for this Vulnerability Assessment

Summary :

The remote web server contains an ASP application that permits for
information disclosure.

Description :

The remote server is running ZixForum, a set of .asp scripts to for a
web-based forum.

This program uses a database named 'ZixForum.mdb' that can be downloaded
by any client. This database contains the whole discussions, the
account information and so on.

Solution :

Prevent the download of .mdb files from the remote website.

Network Security Threat Level:

Medium / CVSS Base Score : 4
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:C)

Networks Security ID: 10982

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Renaud Deraison

Cables, Connectors


IBM System X3250 M3 Server 8GB RAM Intel Xeon x3440 2.53ghz (NO HDD) picture

IBM System X3250 M3 Server 8GB RAM Intel Xeon x3440 2.53ghz (NO HDD)

$36.53



IBM Power S822 8284-22A 12SFF Power8 3.89GHz 6Core 64GB RAM No HDD Server System picture

IBM Power S822 8284-22A 12SFF Power8 3.89GHz 6Core 64GB RAM No HDD Server System

$359.99



IBM Server System X3100 M4 | Xeon @ 3.10 Ghz | 8GB | 250GB HDD No OS (IG-PC26) picture

IBM Server System X3100 M4 | Xeon @ 3.10 Ghz | 8GB | 250GB HDD No OS (IG-PC26)

$96.01



1U IBM x3550 M5 4 Bay SFF SAS3 Server 2x E5-2683 V3 28 Core 128GB DDR4 2x Tray picture

1U IBM x3550 M5 4 Bay SFF SAS3 Server 2x E5-2683 V3 28 Core 128GB DDR4 2x Tray

$318.00



IBM System x3550 M3 Dual Intel Xeon X5650 @2.67GHz 32GB RAM No HDD picture

IBM System x3550 M3 Dual Intel Xeon X5650 @2.67GHz 32GB RAM No HDD

$74.50



ibm server z series picture

ibm server z series

$16000.00



IBM Server eServer | IBMR1000 | UPS 1000VA 700W -Without Batteries picture

IBM Server eServer | IBMR1000 | UPS 1000VA 700W -Without Batteries

$115.00



IBM OS/2 32 BIT + LAN SERVER ENTRY 2.0  04G1051 3.5

IBM OS/2 32 BIT + LAN SERVER ENTRY 2.0 04G1051 3.5" DISKETTES F

$89.00



IBM x3650 M4 2x Xeon E5-2670 2.6ghz 16-Core / 64GB / M5110e / 2x PSU picture

IBM x3650 M4 2x Xeon E5-2670 2.6ghz 16-Core / 64GB / M5110e / 2x PSU

$229.99



NEW IBM Q Radar xx29 2x Xeon E5-2667 v4 3.2ghz 16-Cores / 128gb / M5120 RAID picture

NEW IBM Q Radar xx29 2x Xeon E5-2667 v4 3.2ghz 16-Cores / 128gb / M5120 RAID

$529.99



Discussions

No Discussions have been posted on this vulnerability.