|Summary:||Checks for the presence of /cgi-bin/phf|
The 'glimpse' cgi is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Note that we could not actually check for the presence
of this vulnerability, so you may be using a patched
Solution : remove it from /cgi-bin.
Risk factor : High
BugTraq ID: 2026|
Common Vulnerability Exposure (CVE) ID: CVE-1999-0147
XForce ISS Database: http-cgi-glimpse
AUSCERT Advisory: AA-97.28
|Copyright||This script is Copyright (C) 1999 Renaud Deraison|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.