header-logo
Suggest Exploit
vendor:
pServ
by:
SecurityFocus
7.5
CVSS
HIGH
Remote Source Code Disclosure
200
CWE
Product Name: pServ
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: N/A
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2004

pServ Remote Source Code Disclosure Vulnerability

When handling a specially-crafted URI request, the application discloses the source code of scripts in the 'cgi-bin' directory. Information gathered through this attack could be used to launch further attacks against a system.

Mitigation:

Ensure that the application is configured to only serve files from the intended directory, and that requests for files outside of this directory are rejected.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/13638/info

pServ is affected by a remote source code disclosure vulnerability.

When handling a specially-crafted URI request, the application discloses the source code of scripts in the 'cgi-bin' directory.

Information gathered through this attack could be used to launch further attacks against a system. 

http://www.example.com/somedir/../cgi-bin/test.pl

Navigation

Suggest Exploit

Services By CQR