CVE-2001-0760

Опубликовано: 18 окт. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Citrix Nfuse 1.51 allows remote attackers to obtain the absolute path of the web root via a malformed request to launch.asp that does not provide the session field.

Ссылки

http://www.securityfocus.com/archive/1/194449
Vendor Advisory
http://www.securityfocus.com/archive/1/194522
Vendor Advisory
http://www.securityfocus.com/bid/2956
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6786
http://www.securityfocus.com/archive/1/194449
Vendor Advisory
http://www.securityfocus.com/archive/1/194522
Vendor Advisory
http://www.securityfocus.com/bid/2956
Exploit
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6786

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:citrix:nfuse:1.51:*:*:*:*:*:*:*

EPSS

Процентиль: 91%

0.06618

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-4g4h-9c64-2wvp

github

больше 3 лет назад