header-logo
Suggest Exploit
vendor:
Web-Based Management Agent
by:
SecurityFocus
5
CVSS
MEDIUM
Remote File Verification
200
CWE
Product Name: Web-Based Management Agent
Affected Version From: Not Specified
Affected Version To: Not Specified
Patch Exists: YES
Related CWE: CVE-2002-0647
CPE: o:compaq:web-based_management_agent
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Not Specified
2002

Compaq Web-Based Management Agent Remote File Verification Vulnerability

Compaq Web-Based Management Agent is vulnerable to a remote file verification vulnerability. An attacker can exploit this vulnerability by sending a specially crafted URL to the vulnerable system. The URL contains a parameter that points to a file on the system, and if the file exists, the server will return a 200 OK response.

Mitigation:

Compaq has released a patch to address this issue.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/8019/info

Compaq Web-Based Management Agent has been reported vulnerable to a remote file verification vulnerability. This information leak could be exploited by an attacker to verify the existence of sensitive files on a vulnerable system.

http://www.example.com:2301/<!.DebugSearchPaths>?Url=%2F..%2F..%2F..%2F..%2Fboot.ini

Navigation

Suggest Exploit

Services By CQR