|
Family: CGI abuses --> Category: infos
PAFileDB Error Message Path Disclosure Vulnerability Vulnerability Scan
Vulnerability Scan Summary Checks for psFileDB path disclosure
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a PHP script that is affected by an
information disclosure issue.
Description :
There is a flaw in the remote version of paFileDB that may let an
attacker obtain the physical path of the remote installation by
sending a malformed request to one of the scripts 'admins.php',
'category.php', or 'team.php'. This information may help a possible hacker
make more focused attacks against the remote host.
See also :
http://marc.theaimsgroup.com/?l=bugtraq&m=110245123927025&w=2
Solution :
Unknown at this time.
Threat Level:
Low / CVSS Base Score : 2
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:N)
Click HERE for more information and discussions on this network vulnerability scan.
|