Test ID:	1.3.6.1.4.1.25623.1.0.15516
Category:	CGI abuses
Title:	cPanel Backup File Disclosure
Summary:	NOSUMMARY
Description:	Description: The remote host is running a version of cpanel which is older or as old as version 9.4.1. The remote version of this software is vulnerable to a file disclosure flaw in the Remote Backup module which may allow a local attacker to read arbitrary files on the remote system. Solution : Upgrade to the newest version of cPanel or disable this service Risk factor : Medium
Cross-Ref:	BugTraq ID: 11449 Common Vulnerability Exposure (CVE) ID: CVE-2004-1603 http://www.securityfocus.com/bid/11449 BugTraq ID: 11455 http://www.securityfocus.com/bid/11455 Bugtraq: 20041018 cPanel hardlink backup issue (Google Search) http://marc.info/?l=bugtraq&m=109811572123753&w=2 Bugtraq: 20041018 cPanel hardlink chown issue (Google Search) http://marc.info/?l=bugtraq&m=109811654104208&w=2 http://secunia.com/advisories/12865 XForce ISS Database: cpanel-backup-view-file(17779) https://exchange.xforce.ibmcloud.com/vulnerabilities/17779 XForce ISS Database: cpanel-htaccess-modify-ownership(17780) https://exchange.xforce.ibmcloud.com/vulnerabilities/17780
Copyright	This script is Copyright (C) 2004 Tenable Network Security

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.