| VID |
21205 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The "pagelog.cgi" cgi is installed. Meretek Pagelog.cgi is a CGI script that allows a Web administrator to log how many times a page is accessed and gather information about the client.
The pagelog.cgi script fails to strip "dot dot" directories ("../") from the 'name' and 'display' parameters which could allow a remote attacker to traverse directories below the document root. The first hole allows the attacker to read any file on the system that ends with a ".log" extension and the second vulnerability allows the creation of arbitrary files ending in ".txt" and ".log"
* Note : this flaw was not tested by secuiSCAN. Check the existence of /tmp/secuiscan_pagelog_cgi.txt on this host to find out if you are vulnerable or not.
* References:
http://www.iss.net/security_center/static/5451.php
http://www.securityfocus.com/bid/1864 |
| Recommendation |
No upgrade or patch available as of June 2014. Remove it from /cgi-bin. |
| Related URL |
CVE-2000-0940 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
