Mozilla Bonsai 1.3 - Full Path Disclosure
| EKU-ID: 27231 | CVE: CVE-2003-0153;OSVDB-5463;OSVDB-5462;OSVDB-5459 | OSVDB-ID: |
| Author: Stan Bubrouski | Published: 2002-08-20 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27231 | CVE: CVE-2003-0153;OSVDB-5463;OSVDB-5462;OSVDB-5459 | OSVDB-ID: |
| Author: Stan Bubrouski | Published: 2002-08-20 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/5517/info A path disclosure vulnerability has been reported in Mozilla Bonsai. An attacker can exploit this vulnerability by making a malformed request to Bonsai. This causes Bonsai to return an error page to the requesting user. This error page will contain the absolute path information about the requested file. /bonsai/cvsview2.cgi /bonsai/multidiff.cgi