Test ID:	1.3.6.1.4.1.25623.1.0.11027
Category:	Web application abuses
Title:	AlienForm CGI script
Summary:	The AlienForm CGI script allows an attacker; to view any file on the target computer, append arbitrary data; to an existing file, and write arbitrary data to a new file.;; The AlienForm CGI script is installed as either af.cgi or; alienform.cgi;; For more details, please see the references.
Description:	Summary: The AlienForm CGI script allows an attacker to view any file on the target computer, append arbitrary data to an existing file, and write arbitrary data to a new file. The AlienForm CGI script is installed as either af.cgi or alienform.cgi For more details, please see the references. Solution: No known solution was made available for at least one year since the disclosure of this vulnerability. Likely none will be provided anymore. General solution options are to upgrade to a newer release, disable respective features, remove the product or replace the product by another one. CVSS Score: 6.4 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:N
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2002-0934 BugTraq ID: 4983 http://www.securityfocus.com/bid/4983 Bugtraq: 20020610 AlienForm2 CGI script: arbitrary file read/write (Google Search) http://archives.neohapsis.com/archives/bugtraq/2002-06/0068.html http://www.iss.net/security_center/static/9325.php
Copyright	Copyright (C) 2002 Andrew Hintz (http://guh.nu)

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.