Thttpd Ssi File Retrieval Network Vulnerability

Summary

The remote HTTP server allows an attacker to read arbitrary files on the remote web server, by employing a weakness in an included ssi package, by prepending pathnames with %2e%2e/ (hex- encoded ../) to the pathname. Example: GET /cgi-bin/ssi//%2e%2e/%2e%2e/etc/passwd will return /etc/passwd.

Solution

upgrade to version 2.20 of thttpd.

Severity

Classification

CVE CVE-2000-0900

CVSS	Base Score: 7.5 AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Visagesoft eXPert PDF Viewer ActiveX Control File Overwrite Vulnerability
FSP Suite Directory Traversal Vulnerability
Subversion SVN Protocol Parser Remote Integer Overflow
WebLogic Server DoS
Kiwi CatTools < 3.2.9 Directory Traversal

thttpd ssi file retrieval

Take action and discover your vulnerabilities