CVE-2003-1101
First published: Wed Dec 31 2003(Updated: )
Hummingbird CyberDOCS 3.5.1, 3.9, and 4.0 allows remote attackers to obtain the full path of the DM Web Server via invalid login credentials, which reveals the path in an error message.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Hummingbird | =3.5.1 | |
| Hummingbird | =3.9 | |
| Hummingbird | =4.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2003-1101?
CVE-2003-1101 has a moderate severity level due to the potential leakage of sensitive information.
How do I fix CVE-2003-1101?
To fix CVE-2003-1101, upgrade to a patched version of Hummingbird CyberDOCS, specifically versions after 4.0.
Who is affected by CVE-2003-1101?
CVE-2003-1101 affects users of Hummingbird CyberDOCS versions 3.5.1, 3.9, and 4.0.
What type of vulnerability is CVE-2003-1101?
CVE-2003-1101 is a path disclosure vulnerability that occurs during failed login attempts.
Can CVE-2003-1101 be exploited remotely?
Yes, CVE-2003-1101 can be exploited remotely by attackers attempting to gain information about the server.
- agent/type
- agent/first-publish-date
- agent/remedy
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/references
- agent/severity
- agent/author
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- collector/nvd-historical
- vendor/hummingbird
- vendor/cyberdocs
- agent/softwarecombine
- canonical/hummingbird
- version/hummingbird/3.5.1
- version/hummingbird/3.9
- version/hummingbird/4.0