2 matches found
CVE-2000-0079
The CVE-2000-0079 entry concerns CERN httpd's path disclosure vulnerability. Public sources in connected documents indicate that remote attackers could determine the real pathnames of certain commands by requesting a nonexistent URL, with additional details from Nessus showing an information-disc...
CVE-2002-1445
CVE-2002-1445 describes a cross-site scripting vulnerability in the CERN Proxy Server. An attacker can lure a user to click a link to a non-existent page whose name contains script code, which is then inserted into the resulting error page, allowing script execution in the context of other users....