Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain sensitive information via a request that contains a large number of '"' (double quote) and and '>' characters, which causes the TCL interpreter to crash and include stack data in the output.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2004-04-16T04:00:00

Updated: 2024-08-08T02:49:27.586Z

Reserved: 2002-05-22T00:00:00

Link: CVE-2002-0385

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2004-06-01T04:00:00.000

Modified: 2024-11-20T23:38:57.237

Link: CVE-2002-0385

cve-icon Redhat

No data.