2 matches found
CVE-2001-0214
Way-board CGI program allows remote attackers to read arbitrary files by specifying the filename in the db parameter and terminating the filename with a null byte...
CVE-2001-0214
The Way-board CGI (way-board.cgi) is vulnerable: an attacker can remotely read arbitrary files by supplying a filename in the db parameter terminated with a null byte. The NASL/Tenable data notes the CGI runs with the web server’s privileges (often root or nobody), enabling file disclosure. Remed...