RSS   Vulnerabilities for 'Application portal'   RSS

2005-01-27
 
CVE-2004-0917

 

 
The default installation of Vignette Application Portal installs the diagnostic utility without authentication requirements, which allows remote attackers to gain sensitive information, such as server and OS version, and conduct unauthorized activities via an HTTP request to /diag.

 

 >>> Vendor: Vignette 5 Products
Storyserver
Vignette
Content suite
Application portal
Vignette content management


Copyright 2017, cxsecurity.com