Back to search
CVE-2002-0385
Published: Apr 16, 2004
Modified: Aug 8, 2024
PUBLISHED
Description
Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain sensitive information via a request that contains a large number of '"' (double quote) and and '>' characters, which causes the TCL interpreter to crash and include stack data in the output.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
storyserver-tcl-information-disclosure(11725)
vdb-entry
x_refsource_XF
A040703-1
vendor-advisory
x_refsource_ATSTAKE
7296
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now