• Severity Rating • Fix Information • Vulnerable Software Versions • SCAP Mappings
Netcruiser Web server version and earlier allows remote attackers to determine the physical path of the server via a URL containing (1) con, (2) com2, or (3) com3.
Note: References are provided for the convenience of the reader to help distinguish between vulnerabilities. The list is not intended to be complete.
Date Entry Created
20010524 Disclaimer: The entry creation date may reflect when the CVE-ID was allocated or reserved, and does not necessarily indicate when this vulnerability was discovered, shared with the affected vendor, publicly disclosed, or updated in CVE.
Phase (Legacy)
Modified (20030619-02)
Votes (Legacy)
ACCEPT(4) Baker, Balinsky, Cole, Oliver
MODIFY(1) Frech
NOOP(4) Christey, Wall, Williams, Ziese
Comments (Legacy)
 CHANGE> [Balinsky changed vote from REVIEWING to ACCEPT]
 Balinsky> Vendor acknowledged the problem in a personal communication.
 Frech> XF:netcruiser-server-path-disclosure(6468)
 CHANGE> [Williams changed vote from REVIEWING to NOOP]
 Christey> Fix typo (accidental URL insertion) in XF reference

Proposed (Legacy)
This is an entry on the CVE list, which standardizes names for security problems.