|
Family: CGI abuses --> Category: infos
Wordit Logbook File Disclosure Vulnerability Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of logbook.pl
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a CGI script that suffers from an
information disclosure vulnerability.
Description :
The WordIt 'logbook.pl' CGI script is installed on the remote host.
This script has a well documented security flaw that lets anyone read
arbitrary files on this host.
See also :
http://www.securityfocus.com/archive/1/314275
Solution :
Remove the script.
Threat Level:
Medium / CVSS Base Score : 4
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:C)
Click HERE for more information and discussions on this network vulnerability scan.
|