talentsoft Web+ Error Page Path Disclosure

2000-09-10T00:00:00
ID OSVDB:6774
Type osvdb
Reporter OSVDB
Modified 2000-09-10T00:00:00

Description

Vulnerability Description

Web+ contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting non-existent scripts, which will disclose the installation path resulting in a loss of confidentiality.

Solution Description

Currently, there are no known workarounds or upgrades to correct this issue. However, Webplus has released a patch to address this vulnerability.

Short Description

Web+ contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when requesting non-existent scripts, which will disclose the installation path resulting in a loss of confidentiality.

References:

Vendor URL: http://www.talentsoft.com/ Vendor Specific Advisory URL