CVE-2007-3964 Information

Description

Itaka before 0.2.1 when using Authentication mode allows remote attackers to bypass authentication and obtain sensitive information by downloading screenshots via a direct request for /screenshot.

Reference

http://osvdb.org/38278 http://secunia.com/advisories/26146 http://www.jardinpresente.com.ar/trac/itaka/ticket/20 http://www.securityfocus.com/bid/24985