PT-2003-2056 · Dm+1 · Dm Web Server+1

Publicado

2003-12-31

Atualizado

2017-07-11

CVE-2003-1101

CVSS v2.0

5.0

Média

Vetor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Name of the Vulnerable Software and Affected Versions Hummingbird CyberDOCS versions 3.5.1, 3.9, and 4.0

Description The issue allows remote attackers to obtain the full path of the DM Web Server via invalid login credentials. This is achieved by the system revealing the path in an error message when such credentials are provided.

Recommendations For version 3.5.1, update to a version that fixes this issue. For version 3.9, update to a version that fixes this issue. For version 4.0, update to a version that fixes this issue.

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Identificadores relacionados

CVE-2003-1101

Produtos afetados

Dm Web Server

Hummingbird Cyberdocs

PT-2003-2056 · Dm+1 · Dm Web Server+1

CVE-2003-1101

Identificadores relacionados

Produtos afetados

Referências · 6