Synopsis :

The remote web server includes a CGI script that is affected by
multiple vulnerabilities.

Description :

The version of TWiki installed on the remote host allows access to the
'configure' script and fails to sanitize the 'image' parameter of that
script. When the 'action' parameter is set to 'image', an
unauthenticated attacker can leverage this issue to execute arbitrary
code or to view arbitrary files on the remote host subject to the
privileges of the web server user id.

Note that the TWiki Installation Guide says the 'configure' script
should never be left open to the public.

See also :

http://twiki.org/cgi-bin/view/TWiki/TWikiInstallationGuide
http://twiki.org/cgi-bin/view/Codev/SecurityAlert-CVE-2008-3195

Solution :

Configure the web server to limit access to 'configure', either based
on IP address or a specific user, according to the TWiki Installation
Guide referenced above. Upgrades and hotfixes are also available from
the vendor advisory listed above.

Risk factor :

Medium / CVSS Base Score : 6.8
(CVSS2#AV:N/AC:M/Au:N/C:P/I:P/A:P)
Public Exploit Available : true