Sign up for the ITPro Today newsletter
Stay on top of the IT universe with commentary, news analysis, how-to's, and tips delivered to your inbox daily.
An information disclosure vulnerability exists in Thunderstone Software’s Texis CGI software.
February 6, 2002
Reported February 6, 2001, byphinegeek.
VERSIONS AFFECTED
Any machine running Thunderstone’s Texis CGI software
DESCRIPTION
An information disclosurevulnerability exists in Thunderstone Software’s Texis CGI software in that aquery for an invalid path will disclose the full path to webroot, and in somecases reveal information about the host system.
VENDOR RESPONSE
Thevendor, Thunderstone, has beennotified but has not released a response.
CREDIT
Discovered by phinegeek.
You May Also Like