CVE-2013-0599

medium

Description

IBM Eclipse Help System (IEHS), as used in IBM Rational Directory Server 5.1.1 through 5.1.1.2 and 5.2 through 5.2.1 and other products, allows remote attackers to obtain sensitive information by providing a crafted parameter path and then reading the debug information associated with the 500 HTTP status code.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/83613

http://www.securityfocus.com/bid/60107

http://www-01.ibm.com/support/docview.wss?uid=swg21637151

Details

Source: Mitre, NVD

Published: 2013-05-28

Updated: 2017-08-29

Risk Information

CVSS v2

Base Score: 5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Severity: Medium

CVSS v3

Base Score: 5.3

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Severity: Medium