|
Family: CGI abuses --> Category: infos
anacondaclip CGI vulnerability Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of anacondaclip.pl
Detailed Explanation for this Vulnerability Test
The CGI script 'anacondaclip', which
comes with anacondaclip.pl, is installed on this machine. This CGI has
a well documented security flaw that allows a possible hacker to read arbitrary
files on the remote system with the rights of the HTTP daemon (usually
root or nobody).
Solution : Remove the 'anacondaclip' script from your web server's CGI
directory (typically cgi-bin/).
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|