Vignette StoryServer 5 and Vignette V/5 allows remote attackers to read and modify license information, and cause a denial of service (service halt) by directly accessing the /vgn/license template.
http://www.securityfocus.com/bid/7694
http://www.s21sec.com/es/avisos/s21sec-021-en.txt