The 'glimpse' cgi is installed. This CGI has
a well known security flaw that lets anyone execute arbitrary
commands with the privileges of the http daemon (root or nobody).
Note that we could not actually check for the presence
of this vulnerability, so you may be using a patched
Solution : remove it from /cgi-bin.
Risk factor : High
BugTraq ID: 2026|
Common Vulnerability Exposure (CVE) ID: CVE-1999-0147
AUSCERT Advisory: AA-97.28
XForce ISS Database: http-cgi-glimpse
|Copyright||This script is Copyright (C) 1999 Renaud Deraison|
|This is only one of 74190 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.