CVE-2006-0993 – TippingPoint SMS Server Authentication Bypass Vulnerability

https://notcve.org/view.php?id=CVE-2006-0993

09 May 2006 — The web management interface in 3Com TippingPoint SMS Server before 2.2.1.4478 does not restrict access to certain directories, which might allow remote attackers to obtain potentially sensitive information such as configuration settings. This vulnerability may allow attackers to access sensitive information from vulnerable TippingPoint SMS servers. The specific flaw exists within the web management interface. Due to insufficient protections on specific directories, an attacker with access to the web interf... • http://secunia.com/advisories/20058 •