Summary
The CSNews.cgi exists on this webserver. Some versions of this file are vulnerable to remote exploit.
An attacker may make use of this file to gain access to confidential data or escalate their privileges on the Web server.
Solution
remove it from the cgi-bin or scripts directory.
Severity
Classification
-
CVE CVE-2002-0923 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adobe ColdFusion Information Disclosure Vulnerability
- A-A-S Application Access Server Multiple Vulnerabilities
- AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities
- AWCM CMS Multiple Remote File Include Vulnerabilities
- ASAS Server End User Self Service (EUSS) SQL Injection Vulnerability