Summary
The CSNews.cgi exists on this webserver. Some versions of this file are vulnerable to remote exploit.
An attacker may make use of this file to gain access to confidential data or escalate their privileges on the Web server.
Solution
remove it from the cgi-bin or scripts directory.
Severity
Classification
-
CVE CVE-2002-0923 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- AjaXplorer zoho plugin Directory Traversal Vulnerability
- ApPHP MicroBlog Remote Code Execution Vulnerability
- AWStats Totals 'sort' Parameter Remote Command Execution Vulnerabilities
- Alcatel-Lucent OmniPCX Enterprise Remote Command Execution Vulnerability
- Awstats Configuration File Remote Arbitrary Command Execution Vulnerability