CVE-2001-0276

Sažetak

ext.dll in BadBlue 1.02.07 Personal Edition web server allows remote attackers to determine the physical path of the server by directly calling ext.dll without any arguments, which produces an error message that contains the path.

Reference

http://marc.info/?l=bugtraq&m=98263019502565&w=2
http://www.badblue.com/p010219.htm
http://www.securityfocus.com/bid/2390
https://exchange.xforce.ibmcloud.com/vulnerabilities/6130

CVSS

Base:	6.4
Impact:	4.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	PARTIAL

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:P

Zadnje važnije ažuriranje

10-10-2017 - 01:29

Objavljeno

03-05-2001 - 04:00