Short Name |
HTTP:IRIX:CGI-BIN-WRAP |
---|---|
Severity |
Minor |
Recommended |
No |
Category |
HTTP |
Keywords |
IRIX cgi-bin Wrap |
Release Date |
2003/04/22 |
Update Number |
1213 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit the wrap CGI script in SGI IRIX. Attackers can list the contents of Web server directories.
A vulnerability exists in the cgi-bin program 'wrap', as included with Irix 6.2 from SGI. A failure to validate input results in a vulnerability that allows any remote attacker to view the contents of any world readable directory remotely. This can be used to gain information that may be helpful in carrying out other attacks.