CVE-2002-0463

Name of the Vulnerable Software and Affected Versions ARSC (Really Simple Chat) versions 1.0.1 and earlier

Description The issue allows remote attackers to determine the full pathname of the web server. This is achieved by providing an invalid language in the arsc language parameter, which results in the pathname being leaked in an error message.

Recommendations For ARSC (Really Simple Chat) versions 1.0.1 and earlier, consider restricting access to the home.php file until a fix is available. As a temporary workaround, avoid using invalid languages in the arsc language parameter to minimize the risk of exploitation.