Awstats · Awstats · CVE-2005-2732
**Name of the Vulnerable Software and Affected Versions**
AWStats versions 6.4 and earlier
**Description**
The issue allows remote attackers to obtain sensitive information. This is achieved by accessing a file that does not exist in the config parameter, which then reveals the path in an error message.
**Recommendations**
For AWStats versions 6.4 and earlier, update to a version that fixes this issue to prevent sensitive information disclosure.