Описание
Sambar Server before 6.0 beta 6 allows remote attackers to obtain sensitive information via direct requests to the default scripts (1) environ.pl and (2) testcgi.exe.
Ссылки
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
- Vendor Advisory
- Patch
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1
Одно из
cpe:2.3:a:sambar:sambar_server:5.0:*:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.0:beta1:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.0:beta2:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.0:beta3:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.0:beta4:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.0:beta5:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.0:beta6:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.1:*:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.1:beta1:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.1:beta2:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.1:beta3:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.1:beta4:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.1:beta5:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.2:*:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:5.3:*:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:6.0:beta1:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:6.0:beta2:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:6.0:beta3:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:6.0:beta4:*:*:*:*:*:*
cpe:2.3:a:sambar:sambar_server:6.0:beta5:*:*:*:*:*:*
EPSS
Процентиль: 69%
0.00619
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other
Связанные уязвимости
github
почти 4 года назад
Sambar Server before 6.0 beta 6 allows remote attackers to obtain sensitive information via direct requests to the default scripts (1) environ.pl and (2) testcgi.exe.
EPSS
Процентиль: 69%
0.00619
Низкий
5 Medium
CVSS2
Дефекты
NVD-CWE-Other