Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1409

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2003-1409
Last Modified 05 Sep 2008 04:36:51
Published 31 Dec 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-1409

Summary

TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in the error message.

Vulnerable Systems

Application

  • Ej3 Topo 1.43


References

BUGTRAQ - 20030204 TOPo 1.43 and prior - Path Disclosure (in.php, out.php)

XF - topo-path-disclosure(11248)

BID - 6768

SECUNIA - 8008


Last Updated: 27 May 2016 10:38:21