IE : Security Vulnerabilities, CVEs,
iE Integrator 4.4.220114, when configured without a "bespoke error page" in acm.ini, allows remote attackers to obtain sensitive information via a URL that calls a non-existent .aspx script in the integrator/apps directory, which results in an error message that displays the installation path, web server name, IP, and port, session cookie information, and the IIS system username.
Max CVSS
2.6
EPSS Score
0.66%
Published
2006-02-15
Updated
2017-07-20
1 vulnerabilities found