Vulnerability Description
wgate.dll in SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such as directory structure and operating system via incorrect parameters (1) ~service, (2) ~templatelanguage, (3) ~language, (4) ~theme, or (5) ~template, which leaks the information in the resulting error message.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Sap | Internet Transaction Server | 4620.2.0.323011 |
References
- http://archives.neohapsis.com/archives/bugtraq/2003-08/0361.htmlExploitVendor Advisory
- http://www.securityfocus.com/bid/8515ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13063
- http://archives.neohapsis.com/archives/bugtraq/2003-08/0361.htmlExploitVendor Advisory
- http://www.securityfocus.com/bid/8515ExploitVendor Advisory
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13063
FAQ
What is CVE-2003-0747?
CVE-2003-0747 is a vulnerability with a CVSS score of 5.0 (MEDIUM). wgate.dll in SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to obtain potentially sensitive information such as directory structure and operating system via incorrect pa...
How severe is CVE-2003-0747?
CVE-2003-0747 has been rated MEDIUM with a CVSS base score of 5.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2003-0747?
Check the references section above for vendor advisories and patch information. Affected products include: Sap Internet Transaction Server.