CVE-2006-6933
Summary
| CVE | CVE-2006-6933 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2007-01-16 23:28:00 UTC |
| Updated | 2017-07-29 01:29:00 UTC |
| Description | Easy Chat Server 2.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download certain files via direct requests to files such as (1) ServerKey.pem and (2) AcceptIP.txt. NOTE: The provenance of this information is unknown; the details are obtained solely from third party information. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Efs Software | Easy Chat Server | 2.1 | All | All | All |
| Application | Efs Software | Easy Chat Server | 2.1 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Easy Chat Server Information Disclosure Security Issue - Advisories - Secunia | SECUNIA | secunia.com | Exploit, Vendor Advisory |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.