6.6 Medium
AI Score
Confidence
Low
0.02 Low
EPSS
Percentile
88.8%
viewreport.pl in NetIQ WebTrends Reporting Center Enterprise Edition 6.1a allows remote attackers to determine the installation path via an invalid profileid parameter, which leaks the pathname in an error message.
secunia.com/advisories/10689
securityreason.com/securityalert/3354
www.osvdb.org/3680
www.securityfocus.com/archive/1/350419/30/21610/threaded
www.securityfocus.com/bid/9460
www.securitytracker.com/id?1008799