header-logo
Suggest Exploit
vendor:
Aiglon Web Server
by:
SecurityFocus
4.3
CVSS
MEDIUM
Information Disclosure
200
CWE
Product Name: Aiglon Web Server
Affected Version From: 1
Affected Version To: 1
Patch Exists: YES
Related CWE: CVE-2002-1490
CPE: a:aiglon_software:aiglon_web_server
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: None
2002

A weakness has been discovered in Aiglon Web Server

Aiglon Web Server is vulnerable to an information disclosure attack. A remote attacker can make a malformed HTTP request to the server and cause it to disclose installation path details. This information can be used to aid in further attacks against the host running the affected software.

Mitigation:

Upgrade to the latest version of Aiglon Web Server.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/7867/info

A weakness has been discovered in Aiglon Web Server, which may provide for the disclosure of sensitive information to remote attackers.

It has been reported that a remote attacker may cause the web server to disclose installation path details by making a malformed HTTP request. The remote attacker may potentially use the disclosed information to aid in further "intelligent" attacks against the host running the affected software.

http://www.example.com/index.html*

Navigation

Suggest Exploit

Services By CQR