Vulnerabilities > CVE-2002-2158 - Information Disclosure vulnerability in ZenTrack
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |