Zope Incorrect XML-RPC Request Information Disclosure Vulnerability

info
discussion
exploit
solution
references

Zope Incorrect XML-RPC Request Information Disclosure Vulnerability

A vulnerability has been reported for Zope 2.5.1 and earlier. Reportedly, Zope does not handle XML-RPC requests properly. Specially crafted XML-RPC requests may cause Zope to respond to a request with an error page with system specific details.