Nessus Plugin #11722
Plugin Index
Note: This file has been created from a
downloaded version of the Nessus Plugins
from
http://www.nessus.org/.
Therefore, the information here can be outdated.
cgiWebupdate.exe vulnerability
- Family:
- CGI abuses
- Category:
- infos
- Copyright:
- This script is Copyright (C) 2003 John Lampe
- Summary:
- Checks for the cgiWebupdate.exe file
- Version:
- $Revision: 1.7 $
- Cve_id:
- CAN-2001-1150
- Bugtraq_id:
- 3216
- Xrefs:
- -
- Description:
The CGI 'cgiWebupdate.exe' exists on this webserver.
Some versions of this file are vulnerable to remote exploit.
An attacker can use this hole to gain access to confidential data
or escalate their privileges on the web server.
Solution : remove it from the cgi-bin or scripts folder.
*** As Nessus solely relied on the existence of the cgiWebupdate.exe file,
*** this might be a false positive
Risk factor : High
Generiert am 27.04.2005 um 18:49:54 Uhr.