AWStats 6.4 - 'AWStats.pl' Multiple Full Path Disclosures
| EKU-ID: 37759 | CVE: CVE-2006-3682;OSVDB-25205 | OSVDB-ID: |
| Author: r0t | Published: 2009-04-19 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 37759 | CVE: CVE-2006-3682;OSVDB-25205 | OSVDB-ID: |
| Author: r0t | Published: 2009-04-19 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
source: https://www.securityfocus.com/bid/34159/info AWStats is prone to a path-disclosure vulnerability. Exploiting this issue can allow an attacker to access sensitive data that may be used to launch further attacks against a vulnerable computer. The following are vulnerable: AWStats 6.5 (build 1.857) and prior WebGUI Runtime Environment 0.8.x and prior http://www.example.com/awstats/awstats.pl?config=HACKdestailleur.fr