Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0665

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2004-0665
Last Modified 05 Sep 2008 04:39:03
Published 06 Aug 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-0665

Summary

csFAQ.cgi in csFAQ allows remote attackers to gain sensitive information via an invalid database parameter, which reveals the path to the web server in an error message.

Vulnerable Systems

Application

  • Cgiscript.net Csfaq

  • Cgiscript.net Csfaq 1.0


References

XF - csfaq-path-disclosure(16526)

MISC - http://www.swp-zone.org/archivos/advisory-08.txt

BID - 10618

BUGTRAQ - 20040628 Full path disclosure csFAQ


Last Updated: 27 May 2016 10:38:42