Info

Disclosure

Apr 29, 2005

Discovery

Unknown

Dates

Exploit

Apr 29, 2005

Solution

Unknown

Description

tmsPUBLISHER contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a remote attacker supplies a non-integer to the 'id' variable of the pagename.cfm script, which will disclose the software's installation path resulting in a loss of confidentiality. While such information is relatively low risk, it is often useful in carrying out additional, more focused attacks.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Confidentiality
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, TMS has released a patch to address this vulnerability.

Products

TMS	TMSPublisher	3.3
		3.0

References

Vendor Specific News/Changelog Entry: http://developer.tmsasia.com/page.cfm?name=security
Related OSVDB ID: 23014
Other Advisory URL: http://metawire.org/~adli/advisories/250405_tmspublisher_vulnerablility.signed.tx ......
CVE ID: 2005-4722 (see also: NVD)

Credit

Adli Wahid - adli.wahidgmail.com -

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

TMS

TMSPublisher

References

Credit