CVE-2000-0381
CVSS 2.0 Score 6.4 of 10 (medium)
Details
Summary
CVE-2000-0381 is a vulnerability affecting the Gossamer Threads DBMan db.cgi CGI script. This issue allows remote attackers to access environmental variables and setup information by referencing a non-existent database through the db parameter. The vulnerability does not require any authentication, making it a potential threat to systems running the DBMan application with an exposed db.cgi script. Successful exploitation could lead to information disclosure, which could be further utilized for more sophisticated attacks. It is recommended that affected systems be updated to a patched version as soon as possible.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Vendors
- Gossamer Threads