Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2004-2498

Unspecified vulnerability in the error handler in Hitachi Web Page Generator and Web Page Generator Enterprise 4.01 and earlier, when using the default error template and debug mode is set to ON, allows remote attackers to determine internal directory structures via unknown attack vectors.

Published

2004-12-31T05:00:00.000

Last Modified

2025-04-03T01:03:51.193

Status

Deferred

Source

[email protected]

Severity

CVSSv2: 5.0 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: PARTIAL
  • Integrity Impact: NONE
  • Availability Impact: NONE
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-Other
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application hitachi web_page_generator 01_00 No
Application hitachi web_page_generator 01_01_c No
Application hitachi web_page_generator 02_00 No
Application hitachi web_page_generator 02_00_c No
Application hitachi web_page_generator_enterprise 03_00 No
Application hitachi web_page_generator_enterprise 03_02_c No
Application hitachi web_page_generator_enterprise 03_03 No
Application hitachi web_page_generator_enterprise 03_03_c No
Application hitachi web_page_generator_enterprise 03_03_d No
Application hitachi web_page_generator_enterprise 04_00 No
Application hitachi web_page_generator_enterprise 04_00_c No
Application hitachi web_page_generator_enterprise 04_01 No
Application hitachi web_page_generator_enterprise 04_01_b No
References