Remote Information Disclosure Vulnerability in cgiwrap and php-cgiwrap Packages

Remote Information Disclosure Vulnerability in cgiwrap and php-cgiwrap Packages

CVE-2005-3255 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The (1) cgiwrap and (2) php-cgiwrap packages before 3.9 in Debian GNU/Linux provide access to debugging CGIs under the web document root, which allows remote attackers to obtain sensitive information via direct requests to those CGIs.

Learn more about our Cis Benchmark Audit For Debian Linux.