Unrated severityNVD Advisory· Published Dec 4, 2001· Updated Jun 16, 2026
CVE-2001-0947
CVE-2001-0947
Description
Forms.exe CGI program in ValiCert Enterprise Validation Authority (EVA) 3.3 through 4.2.1 allows remote attackers to determine the real pathname of the server by requesting an invalid extension, which produces an error page that includes the path.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
12cpe:2.3:a:valicert:enterprise_validation_authority:3.3:*:*:*:*:*:*:*+ 11 more
- cpe:2.3:a:valicert:enterprise_validation_authority:3.3:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:3.4:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:3.5:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:3.6:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:3.7:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:3.8:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:3.9:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:4.0:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:4.1:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:4.2:*:*:*:*:*:*:*
- cpe:2.3:a:valicert:enterprise_validation_authority:4.2.1:*:*:*:*:*:*:*
- (no CPE)range: 3.3 - 4.2.1
Patches
Vulnerability mechanics
References
4- www.securityfocus.com/bid/3615nvdPatchVendor Advisory
- www.valicert.com/support/security_advisory_eva.htmlnvdVendor AdvisoryURL Repurposed
- marc.infonvd
- exchange.xforce.ibmcloud.com/vulnerabilities/7649nvd
News mentions
0No linked articles in our index yet.