Hitachi Web Page Generator Error Page Information Disclosure

2004-07-28T05:54:13
ID OSVDB:8263
Type osvdb
Reporter OSVDB
Modified 2004-07-28T05:54:13

Description

Vulnerability Description

Hitachi Web Page Generator contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to an error within the default error templates included with Web Page Generator, which will disclose internal directory information resulting in a loss of confidentiality.

Solution Description

Upgrade to version 03-03-/D and/or 04-02-/L or higher and set the "DEBUG_MODE" property to "off" as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Short Description

Hitachi Web Page Generator contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered due to an error within the default error templates included with Web Page Generator, which will disclose internal directory information resulting in a loss of confidentiality.

References:

Vendor Specific Advisory URL Secunia Advisory ID:12150 Related OSVDB ID: 8264 Keyword: HS04-003