CVE-2004-1736

EPSS 0.48%

發布日:2004/12/31修改日:2026/5/27

也稱為:DEBIAN-CVE-2004-1736

描述

Cacti 0.8.5a allows remote attackers to gain sensitive information via an HTTP request to (1) auth.php, (2) auth_login.php, (3) auth_changepassword.php, and possibly other php files, which reveal the installation path in a PHP error message.

受影響套件(1)

Debian/cactifrom 0, < 0.8.5a-5

參考連結(1)

ADVISORYhttps://security-tracker.debian.org/tracker/CVE-2004-1736