CVE-2008-6869

Oramon Oracle Database Monitoring Tool 2.0.1 stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing credentials via a direct request for config/oramon.ini.

Date published : 2009-07-23

https://www.exploit-db.com/exploits/7286

http://www.vupen.com/english/advisories/2008/3305