CVE-2003-1173

Sažetak

Centrinity FirstClass 7.1 allows remote attackers to access sensitive information by appending search to the end of the URL and checking all of the search option checkboxes and leaving the text field blank, which will return all files in the searched directory.

Reference

http://secunia.com/advisories/10084
http://www.osvdb.org/2723
http://www.securityfocus.com/archive/1/342765
http://www.securityfocus.com/archive/1/342909
http://www.securityfocus.com/bid/8920
https://exchange.xforce.ibmcloud.com/vulnerabilities/13546

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	NONE	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:N/A:N

Zadnje važnije ažuriranje

11-07-2017 - 01:29

Objavljeno

31-12-2003 - 05:00