exploitDog

CVE-2001-1073

Опубликовано: 31 авг. 2001

Источник: nvd

CVSS2: 5

EPSS Низкий

Описание

Webridge PX Application Suite allows remote attackers to obtain sensitive information via a malformed request that generates a server error message, which includes full pathname or internal IP address information in the variables (1) APPL_PHYSICAL_PATH, (2) PATH_TRANSLATED, and (3) LOCAL_ADDR.

Ссылки

http://www.securityfocus.com/archive/1/204725
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/3182
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6993
http://www.securityfocus.com/archive/1/204725
Exploit
Vendor Advisory
http://www.securityfocus.com/bid/3182
Vendor Advisory
https://exchange.xforce.ibmcloud.com/vulnerabilities/6993

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:webridge:px_application_suite:*:*:*:*:*:*:*:*

EPSS

Процентиль: 73%

0.00808

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-fwrv-cc37-24cf

github

больше 3 лет назад

Webridge PX Application Suite allows remote attackers to obtain sensitive information via a malformed request that generates a server error message, which includes full pathname or internal IP address information in the variables (1) APPL_PHYSICAL_PATH, (2) PATH_TRANSLATED, and (3) LOCAL_ADDR.

EPSS

Процентиль: 73%

0.00808

Низкий

5 Medium

CVSS2

Дефекты

NVD-CWE-Other