CVE-2003-1235 Information

Description

BRW WebWeaver 1.03 allows remote attackers to obtain sensitive server environment information via a URL request for testcgi.exe which lists the values of environment variables and the current working directory.

Reference

http://archives.neohapsis.com/archives/bugtraq/2003-04/0014.html http://www.iss.net/security_center/static/11686.php http://www.securityfocus.com/bid/7283