CVE-2005-1366 Information

Description

Pico Server (pServ) 3.2 and earlier allows remote attackers to obtain the source code for CGI scripts via \dirname/../cgi-bin\ in a URL.

Reference

http://marc.info/?l=full-disclosure&m=111625623909003&w=2 http://sourceforge.net/project/shownotes.php?release_id=327708 http://www.redteam-pentesting.de/advisories/rt-sa-2005-011.txt http://www.securityfocus.com/bid/13638