The 'uploader.exe' CGI is installed. This CGI has
a well known security flaw that lets anyone upload arbitrary
CGI on the server, and then execute them.
Solution : remove it from /cgi-win.
Risk factor : High
Common Vulnerability Exposure (CVE) ID: CVE-1999-0177|
Bugtraq: 19970904 [Alert] Website's uploader.exe (from demo) vulnerable (Google Search)
XForce ISS Database: http-website-uploader
|Copyright||This script is Copyright (C) 1999 Renaud Deraison|
|This is only one of 74190 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.