2 matches found
CVE-2005-2538
FlatNuke 2.5.5 and possibly earlier versions allows remote attackers to obtain sensitive information via 1 a null byte or 2 an MS-DOS device name such as AUX, CON, PRN, COM1, or LPT1 in the mod parameter...
CVE-2005-2538
CVE-2005-2538 affects FlatNuke 2.5.5 and potentially earlier versions. The vulnerability allows remote attackers to obtain sensitive information via the mod parameter when it contains either a null byte or an MS-DOS device name (AUX, CON, PRN, COM1, LPT1). This is an information disclosure issue ...