CVE-2004-1786 Information

Description

PortalApp places user credentials under the web root with insufficient access control which allows remote attackers to gain access to sensitive information via a direct request to 8275.mdb.

Reference

http://securitytracker.com/id?1008627 http://www.securityfocus.com/bid/9354 https://exchange.xforce.ibmcloud.com/vulnerabilities/14169 portalapp-url-access-database(14169)