AWStats <= 6.4 - '' Multiple Path Disclosure Vulnerability

ID EDB-ID:32870
Type exploitdb
Reporter r0t
Modified 2009-04-19T00:00:00


AWStats 6.4 '' Multiple Path Disclosure Vulnerability. CVE-2006-3682. Webapps exploit for cgi platform


AWStats is prone to a path-disclosure vulnerability.

Exploiting this issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable computer.

The following are vulnerable:

AWStats 6.5 (build 1.857) and prior
WebGUI Runtime Environment 0.8.x and prior