Apache 2.2.2 - CGI Script Source Code Information Disclosure

Author: Susam Pal
type: remote
platform: multiple
port: 
date_added: 2006-08-09  
date_updated: 2013-09-18  
verified: 1  
codes: CVE-2006-4110;OSVDB-27913  
tags:   
aliases:   
screenshot_url:   
application_url:   

raw file: 28365.txt  

source: https://www.securityfocus.com/bid/19447/info

Apache is prone to an information-disclosure vulnerability because it fails to properly handle exceptional conditions.

An attacker can exploit this issue to retrieve script source code. Information obtained may aid in further attacks.

Versions 2.2.2 for Microsoft Windows is vulnerable to this issue; other versions may also be affected.

http://www.example.com/CGI-BIN/foo