SurgeLDAP 1.0 d Path Disclosure Vulnerability

2003-08-13T00:00:00
ID EDB-ID:23024
Type exploitdb
Reporter Ziv Kamir
Modified 2003-08-13T00:00:00

Description

SurgeLDAP 1.0 d Path Disclosure Vulnerability. Remote exploits for multiple platform

                                        
                                            source: http://www.securityfocus.com/bid/8406/info

SurgeLDAP is prone to a path disclosure vulnerability. It is possible to gain access to sensitive path information by issuing an HTTP GET request for an invalid resource.

This issue exists in the web server component of SurgeLDAP.

http://www.example.com:6680/aaa.html