Vulnerabilities > CVE-2000-0590 - Unspecified vulnerability in Cgi-World Poll IT 2.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
cgi-world
nessus
exploit available

Summary

Poll It 2.0 CGI script allows remote attackers to read arbitrary files by specifying the file name in the data_dir parameter.

Vulnerable Configurations

Part Description Count
Application
Cgi-World
1

Exploit-Db

descriptionCGI-World Poll It 2.0 Internal Variable Override Vulnerability. CVE-2000-0590. Remote exploit for cgi platform
idEDB-ID:20059
last seen2016-02-02
modified2000-07-04
published2000-07-04
reporterAdrian Daminato
sourcehttps://www.exploit-db.com/download/20059/
titleCGI-World Poll It 2.0 Internal Variable Override Vulnerability

Nessus

NASL familyCGI abuses
NASL idPOLLIT.NASL
description'Poll_It_SSI_v2.0.cgi
last seen2020-06-01
modified2020-06-02
plugin id10459
published2000-07-12
reporterThis script is Copyright (C) 2000-2018 Thomas Reinke
sourcehttps://www.tenable.com/plugins/nessus/10459
titlePoll It CGI data_dir Parameter Arbitrary File Access