PDGSoft Shopping Cart Vulnerability Network Vulnerability

Summary

The executables 'redirect.exe' and/or 'changepw.exe' exist on this webserver. Some versions of these files are vulnerable to remote exploit. An attacker can use this hole to gain access to confidential data or escalate their privileges on the web server. *** As OVS solely relied on the existence of the redirect.exe or changepw.exe files, *** this might be a false positive

Solution

remove them from cgi-bin or scripts folder.

Severity

Classification

CVE CVE-2000-0401

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

ArticleSetup Multiple Cross-Site Scripting and SQL Injection Vulnerabilities
Apache Tomcat /servlet Cross Site Scripting
AdMentor Login Flaw
Atmail Multiple Unspecified Security Vulnerabilities.
Advantech Studio 'NTWebServer.exe' Directory Traversal Vulnerability

PDGSoft Shopping cart vulnerability

Take action and discover your vulnerabilities