CGI abuses : pagelog.cgi

Búsqueda de Vulnerabilidad		Buscar 219043 Descripciones CVE y 99761 Descripciones de Pruebas, accesos 10,000+ referencias cruzadas.
	Pruebas CVE Todos

ID de Prueba: 1.3.6.1.4.1.25623.1.0.10591

Categoría: CGI abuses

Título: pagelog.cgi

Resumen: NOSUMMARY

Descripción: Description:
The 'pagelog.cgi' cgi is installed. This CGI has
a well known security flaw that lets an attacker create arbitrary
files on the remote server, ending in .txt, and reading arbitrary
files ending in .txt or .log

*** Warning : this flaw was not tested by Nessus. Check the existence
of /tmp/nessus_pagelog_cgi.txt on this host to find out if you
are vulnerable or not.

Solution : remove it from /cgi-bin.
Risk factor : High

Referencia Cruzada: BugTraq ID: 1864
Common Vulnerability Exposure (CVE) ID: CVE-2000-0940
http://www.securityfocus.com/bid/1864
Bugtraq: 20001029 Minor bug in Pagelog.cgi (Google Search)
http://archives.neohapsis.com/archives/bugtraq/2000-10/0422.html
XForce ISS Database: pagelog-cgi-dir-traverse(5451)
https://exchange.xforce.ibmcloud.com/vulnerabilities/5451

Copyright This script is Copyright (C) 2000 Renaud Deraison

Esta es sólo una de 99761 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa.
Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.

ID de Prueba:	1.3.6.1.4.1.25623.1.0.10591
Categoría:	CGI abuses
Título:	pagelog.cgi
Resumen:	NOSUMMARY
Descripción:	Description: The 'pagelog.cgi' cgi is installed. This CGI has a well known security flaw that lets an attacker create arbitrary files on the remote server, ending in .txt, and reading arbitrary files ending in .txt or .log *** Warning : this flaw was not tested by Nessus. Check the existence of /tmp/nessus_pagelog_cgi.txt on this host to find out if you are vulnerable or not. Solution : remove it from /cgi-bin. Risk factor : High
Referencia Cruzada:	BugTraq ID: 1864 Common Vulnerability Exposure (CVE) ID: CVE-2000-0940 http://www.securityfocus.com/bid/1864 Bugtraq: 20001029 Minor bug in Pagelog.cgi (Google Search) http://archives.neohapsis.com/archives/bugtraq/2000-10/0422.html XForce ISS Database: pagelog-cgi-dir-traverse(5451) https://exchange.xforce.ibmcloud.com/vulnerabilities/5451
Copyright	This script is Copyright (C) 2000 Renaud Deraison