CVE-2002-0917

CVE-2002-0917

EPSS 2.4%

CGIScript.net csPassword.cgi stores .htpasswd files under the web document root, which could allow remote authenticated users to download the file and crack the passwords of other users.

Produtos afetados

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

http://online.securityfocus.com/archive/1/274727 http://www.iss.net/security_center/static/9220.php http://www.securityfocus.com/bid/4885