Vulnerabilities > Information Exposure
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2003-12-31 | CVE-2003-1366 | Information Exposure vulnerability in Openbsd chpass in OpenBSD 2.0 through 3.2 allows local users to read portions of arbitrary files via a hard link attack on a temporary file used to store user database information. | 3.3 |
2003-08-18 | CVE-2003-0456 | Information Exposure vulnerability in Deerfield Visnetic Website 3.5.13/3.5.15/3.5.17 VisNetic WebSite 3.5 allows remote attackers to obtain the full pathname of the server via a request containing a folder that does not exist, which leaks the pathname in an error message, as demonstrated using _vti_bin/fpcount.exe. | 5.0 |
2003-04-11 | CVE-2002-1432 | Information Exposure vulnerability in Coxco Support products MidiCart stores the midicart.mdb database file under the Web document root, which allows remote attackers to steal sensitive information by directly requesting the database. | 5.0 |
2003-01-17 | CVE-2003-0001 | Information Exposure vulnerability in multiple products Multiple ethernet Network Interface Card (NIC) device drivers do not pad frames with null bytes, which allows remote attackers to obtain information from previous packets or kernel memory by using malformed packets, as demonstrated by Etherleak. | 5.0 |
2002-12-31 | CVE-2002-2410 | Information Exposure vulnerability in Open Webmail Open Webmail 1.7/1.71 openwebmail.pl in Open WebMail 1.7 and 1.71 reveals sensitive information in error messages and generates different responses whether a user exists or not, which allows remote attackers to identify valid usernames via brute force attacks and obtain certain configuration and version information. | 5.0 |
2002-12-31 | CVE-2002-2409 | Information Exposure vulnerability in QNX Neutrino Rtos and Photon Microgui Photon microGUI in QNX Neutrino realtime operating system (RTOS) 6.1.0 and 6.2.0 allows attackers to read user clipboard information via a direct request to the 1.TEXT file in a directory whose name is a hex-encoded user ID. | 3.5 |
2002-12-31 | CVE-2002-2380 | Information Exposure vulnerability in Microsoft Network Firmware 5.5.11 NetDSL ADSL Modem 800 with Microsoft Network firmware 5.5.11 allows remote attackers to gain access to configuration menus by sniffing undocumented usernames and passwords from network traffic. | 6.4 |
2002-12-31 | CVE-2002-2369 | Information Exposure vulnerability in Perception Liteserve 2.0 Perception LiteServe 2.0 allows remote attackers to read password protected files via a leading "/./" in a URL. | 5.0 |
2002-12-31 | CVE-2002-2349 | Information Exposure vulnerability in PHPbb PHPbbmod 1.3.3 phpinfo.php in phpBBmod 1.3.3 executes the phpinfo function, which allows remote attackers to obtain sensitive environment information. | 5.0 |
2002-12-31 | CVE-2002-2346 | Information Exposure vulnerability in PHPbb phpBB 2.0 through 2.0.3 generates names for uploaded avatar files with the hex-encoded IP address of the client system, which allows remote attackers to obtain client IP addresses. | 5.0 |