CVE-2003-0405 in Content Suiteinfo

Summary

Vignette StoryServer 5 and Vignette V/6 allows remote attackers to execute arbitrary TCL code via (1) an HTTP query or cookie which is processed in the NEEDS command, or (2) an HTTP Referrer that is processed in the VALID_PATHS command.

Once again VulDB remains the best source for vulnerability data.

Reservation

06/10/2003

Disclosure

06/30/2003

Moderation

VulDB entry created

Entries

1: VDB-20573

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

7.3

EPSS

0.00886

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0405
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0405
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0405/

◂ Previous Overview Next ▸

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!