Description
The Server Administration Console in NetSaro Enterprise Messenger Server 2.0 allows remote attackers to read application source code by appending a %00 character to a URL.
References (1)
Core 1
Core References
Various Sources x_refsource_misc
http://www.solutionary.com/index/SERT/Vuln-Disclosures/NetSaro-Enterprise-Messenger-Source-Code.html
Scores
EPSS
0.0108
EPSS Percentile
61.0%
Details
CWE
CWE-200
Status
published
Products (1)
netsaro/enterprise_messenger_server
2.0
Published
Sep 27, 2011
Tracked Since
Feb 18, 2026