EDB-20041
remotecgiVERIFIED
Flowerfire Sawmill 5.0.21 - File Access
CVE-2000-0588
Larry W. Cashdollar6/26/2000
CVE-2000-0588
NONESawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration comman
Published: 6/26/2000Updated: 4/3/2025
Description
SawMill 5.0.21 CGI program allows remote attackers to read the first line of arbitrary files by listing the file in the rfcf parameter, whose contents SawMill attempts to parse as configuration commands.
AI AnalysisPowered by AI
Affected Products
sawmillsawmill
5.0.21
Available Exploits (1)
References
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0271.htmlExploitVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0080.html
- http://www.securityfocus.com/bid/1402
- http://archives.neohapsis.com/archives/bugtraq/2000-06/0271.htmlExploitVendor Advisory
- http://archives.neohapsis.com/archives/bugtraq/2000-07/0080.html
- http://www.securityfocus.com/bid/1402