CVE-2014-0871

Currently unrated

Key Information:

Vendor
IBM
Vendor
CVE Published:
7 July 2014

Summary

RICOS in IBM Algo Credit Limits (aka ACLM) 4.5.0 through 4.7.0 before 4.7.0.03 FP5 in IBM Algorithmics allows remote attackers to obtain potentially sensitive Tomcat stack-trace information via non-printing characters in a cookie to the /classes/ URI, as demonstrated by the \x00 character.

References

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.