Vulnerability Details CVE-2000-0588
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.041
EPSS Ranking 88.1%
CVSS Severity
CVSS v2 Score 5.0
References
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0271.html
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0080.html
- http://www.securityfocus.com/bid/1402
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0271.html
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0080.html
- http://www.securityfocus.com/bid/1402