Vignette and StoryServer products contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when a specific request is made to a dynamic page, which will crash the TCL interpreter and disclose memory available on the stack, resulting in a loss of confidentiality.
Classification
Location:
Remote/Network Access Required
Attack Type:
Information Disclosure,
Input Manipulation
Impact:
Loss of Confidentiality
Exploit:
Exploit Available
Technical
When a specific request is made to a dynamic page, containing a large number of " and > characters, the TCL interpreter will crash, displaying current information present on the stack.
Solution
Currently, there are no known workarounds or upgrades to correct this issue. However, Vignette has released a patch to address this vulnerability. Costumers should contact Vignette technical support in order to obtain information on how to deal with this issue.
symantec.com - Symantec Corp.