CVE-2004-2518

Published: 31/12/2004 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

Gattaca Server 2003 1.1.10.0 allows remote malicious users to obtain sensitive information via (1) a trailing null byte ("%00") to a URL or (2) an invalid LANGUAGE parameter to web.tmpl, which reveals the full installation path in an error message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
geeos team gattaca server 2003 1.1.10.0

source: wwwsecurityfocuscom/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error pages that contain the full installation path of the application and the web document ...

source: wwwsecurityfocuscom/bid/10729/info It is reported that Gattaca Server 2003 contains multiple path disclosure vulnerabilities By sending HTTP requests to Gattaca's web server, it is reportedly possible to cause the application to return error pages that contain the full installation path of the application and the web document ro ...

NVD-CWE-Other http://members.lycos.co.uk/r34ct/main/Gattaca%20Server%202003.txt http://www.securityfocus.com/bid/10729 http://www.osvdb.org/7922 http://www.osvdb.org/7923 http://securitytracker.com/id?1010703 http://secunia.com/advisories/12071 https://exchange.xforce.ibmcloud.com/vulnerabilities/16700 https://exchange.xforce.ibmcloud.com/vulnerabilities/16699 http://www.gattaca-server.com/cgi-bin/yabb/YaBB.pl?board=gattaca_discussion%3Baction=display%3Bnum=1091194176%3Bstart=0#0 https://nvd.nist.gov https://www.exploit-db.com/exploits/24285/

CVE-2004-2518

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect