RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics allows remote attackers to obtain potentially sensitive Tomcat stack-trace information via non-printing characters in a cookie to the /classes/ URI, as demonstrated by the \x00 character.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: ibm
Published: 2014-07-07T10:00:00
Updated: 2024-08-06T09:27:20.149Z
Reserved: 2014-01-06T00:00:00
Link: CVE-2014-0871
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-07-07T11:01:29.057
Modified: 2018-10-09T19:42:11.780
Link: CVE-2014-0871
Redhat
No data.