CGI abuses : newdsn.exe check

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

Test ID: 10360

Category: CGI abuses

Title: newdsn.exe check

Summary: NOSUMMARY

Description: Description:

The CGI /scripts/tools/newdsn.exe is present.

This CGI allows any attacker to create files
anywhere on your system if your NTFS permissions
are not tight enough, and can be used to overwrite
DSNs of existing databases.

Solution : Remove newdsn.exe
Risk factor : High

Cross-Ref: BugTraq ID: 1818
Common Vulnerability Exposure (CVE) ID: CVE-1999-0191
http://www.osvdb.org/275
XForce ISS Database: http-cgi-newdsn

Copyright This script is Copyright (C) 2000 Renaud Deraison

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit.
To run a free test of this vulnerability against your system, register below.

Test ID:	10360
Category:	CGI abuses
Title:	newdsn.exe check
Summary:	NOSUMMARY
Description:	Description: The CGI /scripts/tools/newdsn.exe is present. This CGI allows any attacker to create files anywhere on your system if your NTFS permissions are not tight enough, and can be used to overwrite DSNs of existing databases. Solution : Remove newdsn.exe Risk factor : High
Cross-Ref:	BugTraq ID: 1818 Common Vulnerability Exposure (CVE) ID: CVE-1999-0191 http://www.osvdb.org/275 XForce ISS Database: http-cgi-newdsn
Copyright	This script is Copyright (C) 2000 Renaud Deraison