CVE-2001-0389

IBM Websphere/NetCommerce3 3.1.2 allows remote attackers to determine the real path of the server by directly calling the macro.d2w macro with a NOEXISTINGHTMLBLOCK argument.

Published : 2001-07-02 04:00 Updated : 2008-09-05 20:23

5.0
CVSS Score More info
Score 5.0 / 10
5.0
Vendor Product Version URI
Ibm Net.commerce 3.1.2 cpe:/a:ibm:net.commerce:3.1.2
Ibm Websphere Application Server 5.1.0.3 cpe:/a:ibm:websphere_application_server:5.1.0.3
  1. Ibm (2) Search CVE
    1. Net.commerce (1) Search CVE
      1. 3.1.2
    2. Websphere Application Server (1) Search CVE
      1. 5.1.0.3

CWE

There is no CWE for this CVE.

History of changes

Date Event
2001-07-02 04:00

New CVE