CVE-2006-0704

2006-02-15T06:06:00
ID CVE-2006-0704
Type cve
Reporter NVD
Modified 2017-07-19T21:29:59

Description

iE Integrator 4.4.220114, when configured without a "bespoke error page" in acm.ini, allows remote attackers to obtain sensitive information via a URL that calls a non-existent .aspx script in the integrator/apps directory, which results in an error message that displays the installation path, web server name, IP, and port, session cookie information, and the IIS system username.