CVE-2000-0904 - Voyager web server 2.01B in the demo disks for QNX 405 stores sensitive web client information in th

CVE-2000-0904

Summary

Voyager web server 2.01B in the demo disks for QNX 405 stores sensitive web client information in the .photon directory in the web document root, which allows remote attackers to obtain that information.

References

http://www.securityfocus.com/archive/1/79956
http://www.securityfocus.com/bid/1648

Vulnerable Configurations

cpe:2.3:a:qnx:voyager:2.01b:*:*:*:*:*:*:*
cpe:2.3:a:qnx:voyager:2.01b:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 05-09-2008 - 20:22)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	1648
bugtraq	20000901 Multiple QNX Voyager Issues

Last major update

05-09-2008 - 20:22

Published

19-12-2000 - 05:00

Last modified

05-09-2008 - 20:22