Lucene search
MitreCVE-2009-4096HistoryNov 29, 2009 - 1:08 p.m.
CVE-2009-4096
2009-11-2913:08:29
CWE-255
mitre
web.nvd.nist.gov
44
cve-2009-4096
radio istek scripti 2.5
vulnerability
remote attackers
sensitive information
access control
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.3
Confidence
Low
EPSS
0.015
Percentile
86.9%
RADIO istek scripti 2.5 stores sensitive information under the web root with insufficient access control, which allows remote attackers to obtain user credentials via a direct request for estafresgaftesantusyan.inc.
Affected configurations
Node
scriptlerimradio_isetek_scriptiMatch2.5
| Vendor | Product | Version | CPE |
|---|---|---|---|
| scriptlerim | radio_isetek_scripti | 2.5 | cpe:2.3:a:scriptlerim:radio_isetek_scripti:2.5:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
Radio istek scripti 2.5 - Remote Configuration Disclosure
2009-11-25 00:00:00
prion
prion
Improper access control
2009-11-29 13:08:00
cvelist
cvelist
CVE-2009-4096
2009-11-28 11:00:00
nvd
nvd
CVE-2009-4096
2009-11-29 13:08:29
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.3
Confidence
Low
EPSS
0.015
Percentile
86.9%
Related for CVE-2009-4096