CGI abuses : PlusMail vulnerability

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 10181

Category: CGI abuses

Title: PlusMail vulnerability

Summary: NOSUMMARY

Description: Description:
The 'plusmail' CGI is installed. Some
versions of this CGI have a well known security flaw that
lets an attacker read arbitrary
file with the privileges of the http daemon
(usually root or nobody).

Solution : remove it from /cgi-bin. No patch yet

Risk factor : High

Cross-Ref: BugTraq ID: 2653
Common Vulnerability Exposure (CVE) ID: CVE-2000-0074
Bugtraq: 20000111 PowerScripts PlusMail Vulnerablity (Google Search)
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0074

Copyright This script is Copyright (C) 1999 Renaud Deraison

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	10181
Category:	CGI abuses
Title:	PlusMail vulnerability
Summary:	NOSUMMARY
Description:	Description: The 'plusmail' CGI is installed. Some versions of this CGI have a well known security flaw that lets an attacker read arbitrary file with the privileges of the http daemon (usually root or nobody). Solution : remove it from /cgi-bin. No patch yet Risk factor : High
Cross-Ref:	BugTraq ID: 2653 Common Vulnerability Exposure (CVE) ID: CVE-2000-0074 Bugtraq: 20000111 PowerScripts PlusMail Vulnerablity (Google Search) https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0074
Copyright	This script is Copyright (C) 1999 Renaud Deraison