Vulnerabilities > CVE-2000-0149 - Unspecified vulnerability in Zeus Technologies Zeus web Server
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
Zeus web server allows remote attackers to view the source code for CGI programs via a null character (%00) at the end of a URL.
Vulnerable Configurations
Exploit-Db
description | Zeus Web Server 3.x Null Terminated Strings Vulnerability. CVE-2000-0149. Remote exploit for cgi platform |
id | EDB-ID:19747 |
last seen | 2016-02-02 |
modified | 2000-02-08 |
published | 2000-02-08 |
reporter | Vanja Hrustic |
source | https://www.exploit-db.com/download/19747/ |
title | Zeus Web Server 3.x Null Terminated Strings Vulnerability |
Nessus
NASL family | Web Servers |
NASL id | ZEUS.NASL |
description | The remote host is running the Zeus Web Server. Versions 3.1.x to 3.3.5 of this web server are vulnerable to a bug that allows an attacker to view the source code of CGI scripts. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10327 |
published | 2000-02-11 |
reporter | This script is Copyright (C) 2000-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/10327 |
title | Zeus Web Server Null Byte Request CGI Source Disclosure |
code |
|