Summary
The remote web server contains a CGI script that is prone to information disclosure.
Description :
The remote host is running WebSPIRS, SilverPlatter's Information Retrieval System for the World Wide Web.
The installed version of WebSPIRS has a well known security flaw that lets an attacker read arbitrary files with the privileges of the http daemon (usually root or nobody).
Solution
Remove this CGI script.
References
Updated on 2015-03-25
Severity
Classification
-
CVE CVE-2001-0211 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N
Related Vulnerabilities
- Apache Tomcat Multiple Vulnerabilities June-09
- Apache Commons Daemon 'jsvc' Information Disclosure Vulnerability
- 2532|Gigs Directory Traversal And SQL Injection Multiple Vulnerabilities
- APC PowerChute Network Shutdown HTTP Response Splitting Vulnerability
- AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities