Vulnerability Assessment & Network Security Forums



If through a vulnerability assessment, a network security issue is detected for the vulnerability below, applying the appropriate security patches in a timely matter is very important.  If you have detected that your system has already been compromised, following CERT's Network Security recovery document will assist with recommended steps for system recovery.


Home >> Browse Vulnerability Assessment Database >> CGI abuses >> readfile.tcl


Vulnerability Assessment Details

readfile.tcl

Vulnerability Assessment Summary
checks for readfile.tcl

Detailed Explanation for this Vulnerability Assessment

The remote host includes a CGI (/cgi-bin/readfile.tcl) which permits anyone
to read arbitrary files on the remote host with the rights of the HTTP
daemon (typically 'nobody').

Solution : None at this time, contact your vendor for a patch
Network Security Threat Level: High

Networks Security ID:

Vulnerability Assessment Copyright: This script is Copyright (C) 2003 Renaud Deraison

Cables, Connectors

SIP Phone - Yealink SIP-T46S Gigabit VoIP IP Phone - NEW
$119.0
SIP Phone - Yealink SIP-T46S Gigabit VoIP IP Phone - NEW pictureSHORETEL IP 560G VOIP Phone S6G IP560GE Black Disp Gigabit Slight Ding and Dent
$129.99
SHORETEL IP 560G VOIP Phone S6G IP560GE Black Disp Gigabit Slight Ding and Dent pictureGe Voip Stereo Headset (pack of 1 Ea)
$37.59
Ge Voip Stereo Headset (pack of 1 Ea) pictureGrandstream Networks HT812 VoIP telephone adapter
$69.78
Grandstream Networks HT812 VoIP telephone adapter picture


Discussions

No Discussions have been posted on this vulnerability.