GTalkbot Username and Password Multiple Information Disclosure Vulnerabilities
BID:22322
Info
GTalkbot Username and Password Multiple Information Disclosure Vulnerabilities
| Bugtraq ID: | 22322 |
| Class: | Design Error |
| CVE: |
CVE-2007-0627 |
| Remote: | Yes |
| Local: | No |
| Published: | Jan 30 2007 12:00AM |
| Updated: | May 12 2015 07:34PM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Micheal Still gltakbot 1.1 |
| Not Vulnerable: |
Micheal Still gtalkbot 1.2 |
Discussion
GTalkbot Username and Password Multiple Information Disclosure Vulnerabilities
The 'gtalkbot' program is prone to multiple information-disclosure vulnerability because of a design error in the affected application.
An attacker can exploit these issues to gain access to sensitive information that may allow the attacker to gain unauthorized access to the affected application. This may lead to other attacks.
Version 1.1 is vulnerable to this issue; prior versions may also be affected.
The 'gtalkbot' program is prone to multiple information-disclosure vulnerability because of a design error in the affected application.
An attacker can exploit these issues to gain access to sensitive information that may allow the attacker to gain unauthorized access to the affected application. This may lead to other attacks.
Version 1.1 is vulnerable to this issue; prior versions may also be affected.
Exploit / POC
Solution / Fix
GTalkbot Username and Password Multiple Information Disclosure Vulnerabilities
Solution:
The vendor released an update to address this issue. Please see the references for more information.
Solution:
The vendor released an update to address this issue. Please see the references for more information.
References
GTalkbot Username and Password Multiple Information Disclosure Vulnerabilities
References:
References:
- gtalkbot 1.2 release information (Micheal Still)
- gtalkbot Homepage (Micheal Still)