Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain sensitive information via a request that contains a large number of '"' (double quote) and and '>' characters, which causes the TCL interpreter to crash and include stack data in the output.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2004-04-16T04:00:00
Updated: 2024-08-08T02:49:27.586Z
Reserved: 2002-05-22T00:00:00
Link: CVE-2002-0385
Vulnrichment
No data.
NVD
Status : Modified
Published: 2004-06-01T04:00:00.000
Modified: 2024-11-20T23:38:57.237
Link: CVE-2002-0385
Redhat
No data.