| VID |
21148 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The file /site/eg/source.asp is present.
This file comes with the Apache::ASP package and allows anyone to write to files in the same directory.
An attacker may use this flaw to upload his own scripts and execute arbitrary commands on this host. |
| Recommendation |
Upgrade to Apache::ASP 1.95 |
| Related URL |
CVE-2000-0628 (CVE) |
| Related URL |
1457 (SecurityFocus) |
| Related URL |
4931 (ISS) |
|
