|
Family: CGI abuses --> Category: infos
AWStats Debug Remote Information Disclosure And Code Execution Vulnerabilities Vulnerability Scan
Vulnerability Scan Summary Acertains the presence of a debug output in AWStats
Detailed Explanation for this Vulnerability Test
The remote host is running AWStats, a free real-time logfile analyzer.
The remote version of this software is prone to a command execution flaw
as well as an information disclosure vulnerability.
A possible hacker may exploit this feature to obtain more information about the
set up of the remote host or to execute arbitrary commands with the rights
of the web server.
Solution : Upgrade a newer version of this software
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|