Omnicron OmniHTTPD 2.0.4-8 File Source Disclosure Vulnerability

2001-05-26T00:00:00
ID EDB-ID:20886
Type exploitdb
Reporter astral
Modified 2001-05-26T00:00:00

Description

Omnicron OmniHTTPD 2.0.4-8 File Source Disclosure Vulnerability. CVE-2001-0778. Remote exploit for windows platform

                                        
                                            source: http://www.securityfocus.com/bid/2788/info

Submitting a specially crafted GET request for a known file (.php, .pl, or .shtml), could cause OmniHTTPD to disclose the source code of the requested resource. The GET requested would have to be appended with the Unicode equivalent of a space.

Example:

GET /filename.php%20