CVE-2003-1282

2003-12-31T00:00:00
ID CVE-2003-1282
Type cve
Reporter NVD
Modified 2008-09-05T16:36:31

Description

IBM Net.Data allows remote attackers to obtain sensitive information such as path names, server names and possibly user names and passwords by causing the (1) $(DTW_CURRENT_FILENAME), (2) $(DATABASE), (3) $(LOGIN), (4) $(PASSWORD), and possibly other predefined variables that can be echoed back to the user via a web form.