Exploitation Summary
EIP tracks 1 public exploit for CVE-2001-0760. PoCs published by sween.
AI-analyzed exploit summary The exploit describes an information leakage vulnerability in Citrix Nfuse where an attacker can discover the webroot by submitting a malformed request to the launcher application. The vulnerability is noted to be unreliable in replication.
Description
Citrix Nfuse 1.51 allows remote attackers to obtain the absolute path of the web root via a malformed request to launch.asp that does not provide the session field.
Exploits (1)
The exploit describes an information leakage vulnerability in Citrix Nfuse where an attacker can discover the webroot by submitting a malformed request to the launcher application. The vulnerability is noted to be unreliable in replication.