CVE-2017-9615
N/A
N/A
Summary
Password exposure in Cognito Software Moneyworks 8.0.3 and earlier allows attackers to gain administrator access to all data, because verbose logging writes the administrator password to a world-readable file.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| n/a | n/a | n/a | affected |
Weaknesses
- n/a
ADP Enrichment
CVE Program Container
Additional References
- http://cognito.co.nz/mwcommunity/viewtopic.php?f=1&t=3542
- https://gist.github.com/ari/e0dd74c12d84f102e3bcb365118e8c30
References
- http://cognito.co.nz/mwcommunity/viewtopic.php?f=1&t=3542
- https://gist.github.com/ari/e0dd74c12d84f102e3bcb365118e8c30
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.