Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> PJreview_Neo.cgi arbitrary file reading


Vulnerability Assessment Details

PJreview_Neo.cgi arbitrary file reading

Vulnerability Assessment Summary
Checks Aprox Portal

Detailed Explanation for this Vulnerability Assessment

The remote host is running PJreview_neo.cgi - a web based software.

There is a bug in this software which may permit a possible hacker to read
arbitary files on the remote web server with the rights of the
web user.

Solution : Upgrade to the latest version of PJReview or disable this software.
Network Security Threat Level: High

Networks Security ID: 9524

Vulnerability Assessment Copyright: This script is Copyright (C) 2004-2006 Tenable Network Security

Cables, Connectors

Juniper EX4200-48PX 48-Port 1GB 48PoE+ Switch w/ 2 x EX-PWR3-930-AC & 711-026017
$549.99
Juniper EX4200-48PX 48-Port 1GB 48PoE+ Switch w/ 2 x EX-PWR3-930-AC & 711-026017 pictureEX-UM-2XFP - Juniper EX-UM-2XFP 711-02127 2PT 10GB XFP Uplink Module
$400.0
EX-UM-2XFP - Juniper EX-UM-2XFP 711-02127 2PT 10GB XFP Uplink Module picture6ft Console Cable USB to RJ45 for Cisco Huawei TP-Link Lenovo Neteye Juniper etc
$8.56
6ft Console Cable USB to RJ45 for Cisco Huawei TP-Link Lenovo Neteye Juniper etc pictureLOT 8 JUNIPER NETWORKS WLA532-US 802.11n 450Mbps POE WIRELESS LAN ACCESS POINT
$115.0
LOT 8 JUNIPER NETWORKS WLA532-US 802.11n 450Mbps POE WIRELESS LAN ACCESS POINT picture


Discussions

No Discussions have been posted on this vulnerability.