CERN httpd Virtual Web Path Disclosure

Medium Nessus Plugin ID 10037


The remote web server has an information disclosure vulnerability.


The remote host appears to be running CERN httpd. It was possible to get the physical location of a virtual web directory by issuing the request :

GET /cgi-bin/ls HTTP/1.0

A remote attacker could use this information to mount further attacks.


CERN httpd is no longer maintained. Switch to using an actively supported web server.

See Also

Plugin Details

Severity: Medium

ID: 10037

File Name: cern_httpd_path.nasl

Version: $Revision: 1.32 $

Type: remote

Family: Web Servers

Published: 2000/01/20

Modified: 2016/11/15

Dependencies: 10107, 17975

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.5

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:POC/RL:U/RC:ND

Vulnerability Information

Required KB Items: www/cern

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 2000/01/18

Exploitable With

Core Impact

Reference Information

CVE: CVE-2000-0079

BID: 936