2005-05-10 04:00:00
mitre
PUBLISHED
PortalApp places user credentials under the web root with insufficient access control, which allows remote attackers to gain access to sensitive information via a direct request to 8275.mdb.