Allmanage Administrator Password Retrieval Vulnerability

Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: vuldb@securityfocus.com.

This problem can be circumvented by setting permissions on the file ../k in the Allmanage directory to refuse remote reading.



 

Privacy Statement
Copyright 2010, SecurityFocus