Un-CGI Double Dot Arbitrary File Access

2001-07-17T00:00:00
ID OSVDB:8963
Type osvdb
Reporter OSVDB
Modified 2001-07-17T00:00:00

Description

Solution Description

Upgrade to version 1.10 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

References:

Vendor URL: http://www.midwinter.com/~koreth/uncgi.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-07/0287.html Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2001-07/0349.html ISS X-Force ID: 6846 CVE-2001-1242 Bugtraq ID: 3056