mimicboard2 (Mimic2) 086 and earlier stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for mimic2.dat.Referenceshttp://www.securityfocus.com/bid/14779http://exploitlabs.com/files/advisories/EXPL-A-2005-013-mimic2.txt
