CVE-2003-1409 Information

Description

TOPo 1.43 allows remote attackers to obtain sensitive information by sending an HTTP request with an invalid parameter to (1) in.php or (2) out.php which reveals the path to the TOPo directory in the error message.

Reference

http://archives.neohapsis.com/archives/bugtraq/2003-02/0049.html http://secunia.com/advisories/8008 http://www.securityfocus.com/bid/6768 https://exchange.xforce.ibmcloud.com/vulnerabilities/11248