Vigil@nce - ArcGIS: information leak about database tables
December 2012 by Vigil@nce
This bulletin was written by Vigil@nce : http://vigilance.fr/offer
SYNTHESIS OF THE VULNERABILITY
An attacker who causes a server side error, can get information
about the database schema.
Impacted products: ArcGIS ArcView, ArcGIS for Desktop
Severity: 2/4
Creation date: 16/11/2012
DESCRIPTION OF THE VULNERABILITY
ArcGIS uses a relational database.
An attacker who causes a server side error, can get information
about the database schema.
Technical details are unknown.
ACCESS TO THE COMPLETE VIGIL@NCE BULLETIN
http://vigilance.fr/vulnerability/ArcGIS-information-leak-about-database-tables-12168