Path Disclosure Vulnerability in IBM Net.Data db2www Package

Path Disclosure Vulnerability in IBM Net.Data db2www Package

CVE-2000-1110 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

document.d2w CGI program in the IBM Net.Data db2www package allows remote attackers to determine the physical path of the web server by sending a nonexistent command to the program.

Learn more about our Cis Benchmark Audit For Ibm Db2.