Vignette: >> Storyserver >> 4.2 Security Vulnerabilities
Vignette StoryServer and Vignette V/5 does not properly calculate the size of text variables, which causes Vignette to return unauthorized portions of memory, as demonstrated using the "-->" string in a CookieName argument to the login template, referred to as a "memory leak" in some reports.
CVSS Score
5.0
EPSS Score
0.024
Published
2003-06-30