• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Mollensoft Enceladus Server Suite HTACCESS File Access Weakness

It has been reported that Enceladus Server Suite does not securely store certain user credentials. This may allow users, who are authorized to access the "Security File Downloads" directory, to gain access to potentially sensitive information. Specifically, the directory htaccess file is stored without access restrictions, making it accessible to users who can access the directory.