Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4373

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2005-4373
Last Modified 20 Sep 2008 12:43:01
Published 19 Dec 2005 09:03:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2005-4373

Summary

Adaptive Website Framework (AWF) 2.10 and earlier allows remote attackers to obtain the full path of the application via an invalid mode parameter to community.html, which leaks the path in an error message.

Vulnerable Systems


References

OSVDB - 21915

CONFIRM - http://www.awf-cms.org/news.html

MISC - http://pridels0.blogspot.com/2005/12/awf-adaptive-website-framework-vuln.html


Last Updated: 27 May 2016 10:41:16