CVE Vulnerabilities

CVE-2001-0389

Published: Jul 02, 2001 | Modified: Sep 05, 2008
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:P/I:N/A:N
RedHat/V2
RedHat/V3
Ubuntu

IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument.

Affected Software

Name Vendor Start Version End Version
Net.commerce Ibm 3.1.2 3.1.2
Websphere_application_server Ibm 5.1.0.3 5.1.0.3

References