CVE-2002-2158

2005-11-1621:17:00

mitre

www.cve.org

zentrack

path disclosure

vulnerability

web root

AI Score

6.7

Confidence

Low

EPSS

0.006

Percentile

78.5%

JSON

zenTrack 2.0.3 and earlier allows remote attackers to obtain the full path to the web root via an invalid ticket ID, which leaks the path in an error message.

References

online.securityfocus.com/archive/1/276121

www.iss.net/security_center/static/9312.php

www.securityfocus.com/bid/4973