| VID |
21137 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The convert.bas program in the Novell web server allows a remote attackers to read any file on the system that is internally accessible by the web server. This program is included as part of the default installation of some versions of the Novell HTTP server. |
| Recommendation |
Apply the web002.exe patch from the Novell web site, as listed in Novell Technical Information Document #2911895. See References. |
| Related URL |
CVE-1999-0175 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
339 (ISS) |
|
