Vignette Story Server 4.1 and 6.0 allows remote attackers to obtain sensitive information via a request that contains a large number of '"' (double quote) and and '>' characters, which causes the TCL interpreter to crash and include stack data in the output.

ATSTAKE:A040703-1 | URL:http://www.atstake.com/research/advisories/2003/a040703-1.txt | BID:7296 | URL:http://www.securityfocus.com/bid/7296 | XF:storyserver-tcl-information-disclosure(11725) | URL:https://exchange.xforce.ibmcloud.com/vulnerabilities/11725