← CVECheck
HomeVulnerabilities

CVE-2004-0050 — MEDIUM severity vulnerability (Verity Ultraseek before 5.2.2 allows remote attackers to obt)

Verity Ultraseek before 5.2.2 allows remote attackers to obtain the full pathname of the document root via an MS-DOS device name in the web search option, such as (1) NUL, (2) CON, (3) AUX, (4) COM1, (5) COM2, and others.

CVE IDCVE-2004-0050
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published2004-06-14
Last modified2026-04-16
DescriptionVerity Ultraseek before 5.2.2 allows remote attackers to obtain the full pathname of the document root via an MS-DOS device name in the web search option, such as (1) NUL, (2) CON, (3) AUX, (4) COM1, (5) COM2, and others.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →