Lucene search
HistoryMay 16, 2002 - 4:00 a.m.
CVE-2002-0215
cve-2002-0215
agora.cgi
debug mode
path disclosure
nvd
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.5%
Agora.cgi 3.2r through 4.0 while in debug mode allows remote attackers to determine the full pathname of the agora.cgi file by requesting a non-existent .html file, which leaks the pathname in an error message.
Affected configurations
Node
steve_kneizysagora.cgiMatch3.2
ORsteve_kneizysagora.cgiMatch3.2a
ORsteve_kneizysagora.cgiMatch3.2b
ORsteve_kneizysagora.cgiMatch3.2c
ORsteve_kneizysagora.cgiMatch3.2d
ORsteve_kneizysagora.cgiMatch3.2e
ORsteve_kneizysagora.cgiMatch3.2f
ORsteve_kneizysagora.cgiMatch3.2g
ORsteve_kneizysagora.cgiMatch3.2h
ORsteve_kneizysagora.cgiMatch3.2i
ORsteve_kneizysagora.cgiMatch3.2j
ORsteve_kneizysagora.cgiMatch3.2ja
ORsteve_kneizysagora.cgiMatch3.2k
ORsteve_kneizysagora.cgiMatch3.2l
ORsteve_kneizysagora.cgiMatch3.2m
ORsteve_kneizysagora.cgiMatch3.2n
ORsteve_kneizysagora.cgiMatch3.2p
ORsteve_kneizysagora.cgiMatch3.2q
ORsteve_kneizysagora.cgiMatch3.2r
ORsteve_kneizysagora.cgiMatch3.3a
ORsteve_kneizysagora.cgiMatch3.3b
ORsteve_kneizysagora.cgiMatch3.3c
ORsteve_kneizysagora.cgiMatch3.3d
ORsteve_kneizysagora.cgiMatch3.3e
ORsteve_kneizysagora.cgiMatch3.3f
ORsteve_kneizysagora.cgiMatch3.3i
ORsteve_kneizysagora.cgiMatch3.3j
ORsteve_kneizysagora.cgiMatch4.0
ORsteve_kneizysagora.cgiMatch4.0a
ORsteve_kneizysagora.cgiMatch4.0b
ORsteve_kneizysagora.cgiMatch4.0c
ORsteve_kneizysagora.cgiMatch4.0d
ORsteve_kneizysagora.cgiMatch4.0e
5 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:L/Au:N/C:P/I:N/A:N
7 High
AI Score
Confidence
Low
0.005 Low
EPSS
Percentile
76.5%
Related for CVE-2002-0215