CVE-2000-0905 - QNX Embedded Resource Manager in Voyager web server 2.01B in the demo disks for QNX 405 allows remot

CVE-2000-0905

Summary

QNX Embedded Resource Manager in Voyager web server 2.01B in the demo disks for QNX 405 allows remote attackers to read sensitive system statistics information via the embedded.html web page.

References

http://www.securityfocus.com/archive/1/79956
http://www.securityfocus.com/bid/1648

Vulnerable Configurations

cpe:2.3:a:qnx:voyager:2.01b:*:*:*:*:*:*:*
cpe:2.3:a:qnx:voyager:2.01b:*:*:*:*:*:*:*

CVSS

Base:	5.0 (as of 05-09-2008 - 20:22)
Impact:
Exploitability:

CWE

NVD-CWE-Other

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
PARTIAL	NONE	NONE

cvss-vector via4

AV:N/AC:L/Au:N/C:P/I:N/A:N

refmap via4

bid	1648
bugtraq	20000901 Multiple QNX Voyager Issues

Last major update

05-09-2008 - 20:22

Published

19-12-2000 - 05:00

Last modified

05-09-2008 - 20:22