PServ 3.2 - Remote Source Code Disclosure Vulnerability

2005-05-16T00:00:00
ID EDB-ID:25666
Type exploitdb
Reporter Claus R. F. Overbeck
Modified 2005-05-16T00:00:00

Description

PServ 3.2 Remote Source Code Disclosure Vulnerability. CVE-2005-1366. Webapps exploit for cgi platform

                                        
                                            source: http://www.securityfocus.com/bid/13638/info

pServ is affected by a remote source code disclosure vulnerability.

When handling a specially-crafted URI request, the application discloses the source code of scripts in the 'cgi-bin' directory.

Information gathered through this attack could be used to launch further attacks against a system. 

http://www.example.com/somedir/../cgi-bin/test.pl