|Title:||SIX Webboard's generate.cgi|
|Summary:||Checks for the presence of /cgi-bin/webboard/generate.cgi|
The CGI 'generate.cgi'from SIX webboard is installed.
This CGI has a well known security flaw that lets an attacker read
arbitrary files with the privileges of the http daemon (usually root
Solution : remove it from /cgi-bin
Risk factor : High
BugTraq ID: 3175|
Common Vulnerability Exposure (CVE) ID: CVE-2001-1115
Bugtraq: 20010813 SIX-webboard 2.01 "show files" vulnerability (Google Search)
XForce ISS Database: sixwebboard-dot-directory-traversal(6975)
|Copyright||This script is Copyright (C) 2001 Renaud Deraison|
|This is only one of 58962 vulnerability tests in our test suite. Find out more about running a complete security audit.|
To run a free test of this vulnerability against your system, register below.