Vulnerabilities > CVE-2003-1235 - Information Disclosure vulnerability in BRS WebWeaver
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
BRW WebWeaver 1.03 allows remote attackers to obtain sensitive server environment information via a URL request for testcgi.exe, which lists the values of environment variables and the current working directory.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 3 |