Vulnerabilities > CVE-2004-2661 - Information Disclosure vulnerability in Soft3304 04Webserver 1.40

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
NONE
Availability impact
NONE
network
low complexity
soft3304
NVD
Published: 2004-12-31
Updated: 2008-09-05

Summary

Soft3304 04WebServer before 1.41 does not properly check file names, which allows remote attackers to obtain sensitive information (CGI source code).

Vulnerable Configurations

Part Description Count
Application
Soft3304
1

References