|
Family: CGI abuses : XSS --> Category: attack
Infinity CGI Exploit Scanner Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of nph-exploitscanget.cgi
Detailed Explanation for this Vulnerability Test
The remote is running Infinity Exploit Scanner, a web-based CGI vulnerability
scanner implemented in perl and stored under the name 'nph-exploitscanget.cgi'.
There is a flaw in this CGI which lets a possible hacker execute arbitrary
commands on this host.
In addition to this, there is a flaw in this CGI which may allow a possible hacker
to use this CGI to scan third-party hosts by bypassing the policy set by
the administrator of this CGI. This CGI is also vulnerable to
cross-site scripting issues.
Solution : Upgrade to the latest version
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|