|
|
Family: CGI abuses --> Category: infos
netscape publishingXpert 2 PSUser problem Vulnerability Scan
Vulnerability Scan Summary
Checks if /PSUser/PSCOErrPage.htm reads any file
Detailed Explanation for this Vulnerability Test
The '/PSUser/PSCOErrPage.htm' CGI allows a
malicious user to view any file on the target computer by issuing
a GET request :
GET /PSUser/PSCOErrPage.htm?errPagePath=/file/to/read
Solution : Remove it
Threat Level: Medium
Click HERE for more information and discussions on this network vulnerability scan.
|
