2006-02-15 11:00:00
mitre
PUBLISHED
imageVue 16.1 allows remote attackers to obtain folder permission settings via a direct request to dir.php, which returns an XML document that lists folders and their permissions.