|
Family: CGI abuses --> Category: infos
OmniHTTPd visadmin exploit Vulnerability Scan
Vulnerability Scan Summary Checks for the visadmin.exe cgi
Detailed Explanation for this Vulnerability Test
It is possible to fill the hard disk of a server
running OmniHTTPd by issuing the request :
http://omni.server/cgi-bin/visadmin.exe?user=guest
This allows a possible hacker to crash your web server.
This script checks for the existence of the faulty CGI, but
does not execute it.
Solution : remove visadmin.exe from /cgi-bin.
Threat Level: Medium / High
Click HERE for more information and discussions on this network vulnerability scan.
|