Описание
REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an incorrect Tonnage parameter to calculate.php that triggers a divide-by-zero error, which leaks the path in an error message.
REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an incorrect Tonnage parameter to calculate.php that triggers a divide-by-zero error, which leaks the path in an error message.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2006-5896
- https://exchange.xforce.ibmcloud.com/vulnerabilities/30538
- http://lists.grok.org.uk/pipermail/full-disclosure/2006-November/050879.html
- http://netvigilance.com/advisory0007
- http://securityreason.com/securityalert/1911
- http://www.osvdb.org/30264
- http://www.securityfocus.com/archive/1/453020/100/0/threaded
EPSS
Процентиль: 73%
0.00771
Низкий
CVE ID
Связанные уязвимости
nvd
около 19 лет назад
REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an incorrect Tonnage parameter to calculate.php that triggers a divide-by-zero error, which leaks the path in an error message.
EPSS
Процентиль: 73%
0.00771
Низкий