Bugtraq mailing list archives

Previous By Date Next
Previous By Thread Next

Re: Invision Power Board 1.3 Final Path Disclosure Vulnerability

From: JeiAr <security () gulftech org>
Date: 5 Mar 2004 17:18:26 -0000
In-Reply-To: <20040305130832.64623.qmail () web25104 mail ukl yahoo com>

This "vulnerability" was actually reported by GulfTech Security on March 2nd 

http://www.gulftech.org/03022004.php

and posted on the governmentsecurity.org message board March 3rd

http://www.governmentsecurity.org/forum/index.php?showtopic=7008



~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*

Product:      Invision Power Board
             http://www.invisionboard.com
Versions:     1.3 Final (and probably lower)     
Bug:          Disclosure of install path
Impact:       Attacker learns the local install
             path of Invision Power Board and the
             htdocs
Date:         March 05, 2004
Author:       Shaun Colley
             Email: shaunige () yahoo co uk
             WWW: http://www.nettwerked.co.uk

~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*~*
Previous By Date Next
Previous By Thread Next

Current thread: