Vulnerabilities > CVE-2005-1366 - Unspecified vulnerability in Pico Server Pico Server
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN pico-server
exploit available
Summary
Pico Server (pServ) 3.2 and earlier allows remote attackers to obtain the source code for CGI scripts via "dirname/../cgi-bin" in a URL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 4 |
Exploit-Db
| description | PServ 3.2 Remote Source Code Disclosure Vulnerability. CVE-2005-1366. Webapps exploit for cgi platform |
| id | EDB-ID:25666 |
| last seen | 2016-02-03 |
| modified | 2005-05-16 |
| published | 2005-05-16 |
| reporter | Claus R. F. Overbeck |
| source | https://www.exploit-db.com/download/25666/ |
| title | PServ 3.2 - Remote Source Code Disclosure Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/39268/rt-sa-2005-011.txt |
| id | PACKETSTORM:39268 |
| last seen | 2016-12-05 |
| published | 2005-08-14 |
| reporter | tsyklon.informatik.rwth-aachen.de |
| source | https://packetstormsecurity.com/files/39268/rt-sa-2005-011.txt.html |
| title | rt-sa-2005-011.txt |
References
- http://marc.info/?l=full-disclosure&m=111625623909003&w=2
- http://marc.info/?l=full-disclosure&m=111625623909003&w=2
- http://sourceforge.net/project/shownotes.php?release_id=327708
- http://sourceforge.net/project/shownotes.php?release_id=327708
- http://www.redteam-pentesting.de/advisories/rt-sa-2005-011.txt
- http://www.redteam-pentesting.de/advisories/rt-sa-2005-011.txt
- http://www.securityfocus.com/bid/13638
- http://www.securityfocus.com/bid/13638