CVE-2000-0381

CVSS 2.0 Score 6.4 of 10 (medium)

Details

Published May 5, 2000
Updated: Feb 14, 2024

Summary

CVE-2000-0381 is a vulnerability affecting the Gossamer Threads DBMan db.cgi CGI script. This issue allows remote attackers to access environmental variables and setup information by referencing a non-existent database through the db parameter. The vulnerability does not require any authentication, making it a potential threat to systems running the DBMan application with an exposed db.cgi script. Successful exploitation could lead to information disclosure, which could be further utilized for more sophisticated attacks. It is recommended that affected systems be updated to a patched version as soon as possible.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share