Code: p670 Severity: Notice
Description: This event is generated when an attempt is made to download the wwwboard password file Impact: Information disclosure. An attacker could crack the encrypted password and gain access to the wwwboard administrator account Corrective: Inspect packet to insure that it was an attempt to download the password file and not just a webpage discussing WWWBoard. Insure that local installations of WWWBoard are current and properly configured to not save the password file into a publically-accessible area.
|
