CVE-2002-0917

CVE-2002-0917

EPSS 2.4%

CGIScript.net csPassword.cgi stores .htpasswd files under the web document root, which could allow remote authenticated users to download the file and crack the passwords of other users.

Productos afectados

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

http://online.securityfocus.com/archive/1/274727 http://www.iss.net/security_center/static/9220.php http://www.securityfocus.com/bid/4885