| VID |
21207 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
"Poll_It_SSI_v2.0.cgi" is installed. This CGI has a well known security flaw that lets an attacker retrieve any file from the remote system, e.g. /etc/passwd. |
| Recommendation |
Remove "Poll_It_SSI_v2.0.cgi" from /cgi-bin. |
| Related URL |
CVE-2000-0590 (CVE) |
| Related URL |
1431 (SecurityFocus) |
| Related URL |
4878 (ISS) |
|
