CVE-2001-0760 Information

Description

Citrix Nfuse 1.51 allows remote attackers to obtain the absolute path of the web root via a malformed request to launch.asp that does not provide the session field.

Reference

http://www.securityfocus.com/archive/1/194449 http://www.securityfocus.com/archive/1/194522 http://www.securityfocus.com/bid/2956 https://exchange.xforce.ibmcloud.com/vulnerabilities/6786