CVE-2003-1409

2007-10-2010:00:00

mitre

www.cve.org

6.2 Medium

AI Score

Confidence

Low

0.016 Low

EPSS

Percentile

87.4%

JSON

TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php, which reveals the path to the TOPo directory in the error message.

References

archives.neohapsis.com/archives/bugtraq/2003-02/0049.html

secunia.com/advisories/8008

www.securityfocus.com/bid/6768

exchange.xforce.ibmcloud.com/vulnerabilities/11248