Memory Leak Vulnerability in Vignette StoryServer and V/5

Memory Leak Vulnerability in Vignette StoryServer and V/5

CVE-2003-0400 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Vignette StoryServer and Vignette V/5 does not properly calculate the size of text variables, which causes Vignette to return unauthorized portions of memory, as demonstrated using the "-->" string in a CookieName argument to the login template, referred to as a "memory leak" in some reports.

Learn more about our Cis Benchmark Audit For Server Software.