Vulnerability Description
Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including (1) cache.key and (2) cache.dat, related to .csp files under (a) Dev\studio\templates and (b) Devuser\studio\templates.
CVSS Score
LOW
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Intersystems | Cache Database | 5 |
References
- http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/7a
- http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/cd
- http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/7a
- http://groups.google.com/group/intersystems-public-cache/browse_thread/thread/cd
FAQ
What is CVE-2004-2684?
CVE-2004-2684 is a vulnerability with a CVSS score of 2.1 (LOW). Unspecified vulnerability in the %template package in InterSystems Cache' 5.0 allows attackers to access certain files on a server, including (1) cache.key and (2) cache.dat, related to .csp files und...
How severe is CVE-2004-2684?
CVE-2004-2684 has been rated LOW with a CVSS base score of 2.1/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2004-2684?
Check the references section above for vendor advisories and patch information. Affected products include: Intersystems Cache Database.