ttawebtop.cgi in Tarantella Enterprise 3.20 on SPARC Solaris and Linux, and 3.1x and 3.0x including 3.11.903, allows remote malicious users to view directory contents via an empty pg parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
tarantella tarantella enterprise 3.0 |
||
tarantella tarantella enterprise 3.20 |
||
tarantella tarantella enterprise 3.10 |