|
Family: CGI abuses --> Category: infos
wrap Vulnerability Scan
Vulnerability Scan Summary Searches for the existence of /cgi-bin/wrap
Detailed Explanation for this Vulnerability Test
Synopsis :
The remote web server contains a CGI script that is prone to
information disclosure.
Description :
The 'wrap' CGI is installed. This CGI allows anyone to get a listing
for any directory with mode +755.
*** Note that all implementations of 'wrap' are not vulnerable.
See also :
http://seclists.org/lists/bugtraq/1997/Apr/0076.html
Solution :
Remove this CGI script.
Threat Level:
Medium / CVSS Base Score : 4
(AV:R/AC:L/Au:NR/C:P/A:N/I:N/B:C)
Click HERE for more information and discussions on this network vulnerability scan.
|