Pacific Software Carello add.exe File Duplication and Source Disclosure

2000-07-12T00:00:00
ID OSVDB:1351
Type osvdb
Reporter OSVDB
Modified 2000-07-12T00:00:00

Description

Vulnerability Description

The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.

Short Description

The add.exe program in the Carello shopping cart software allows remote attackers to duplicate files on the server, which could allow the attacker to read source code for web scripts such as .ASP files.

References:

CVE-2000-0396 Bugtraq ID: 1245