[Full-disclosure] REMLAB Web Mech Designer 2.0.5 Path Disclosure Vulnerability

Description: REMLAB http://remlab.sourceforge.net/ is a fully fuctional cross-platform web-based Battlemech designer for the tactical board game Battletech http://www.classicbattletech.com/ . REMLAB is built entirely on HTML, PHP, and JavaScript with AJAX functionality. The vulnerability exists i...

CVE-2006-5896

REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an incorrect Tonnage parameter to calculate.php that triggers a divide-by-zero error, which leaks the path in an error message...

CVE-2006-5896

REMLAB Web Mech Designer 2.0.5 allows remote attackers to obtain the full path of the script via an incorrect Tonnage parameter to calculate.php that triggers a divide-by-zero error, which leaks the path in an error message...

CVE-2006-5896

REMLAB Web Mech Designer 2.0.5 contains a vulnerability in calculate.php where an incorrect Tonnage value allows a remote attacker to trigger a divide-by-zero error, leaking the full server path in the error message. Affected component: calculate.php (Tonnage parameter). Impact: path disclosure w...