Reported February 6, 2001, by phinegeek.
Any machine running Thunderstone’s Texis CGI software
An information disclosure vulnerability exists in Thunderstone Software’s Texis CGI software in that a query for an invalid path will disclose the full path to webroot, and in some cases reveal information about the host system.
The vendor, Thunderstone, has been notified but has not released a response.
Discovered by phinegeek.