OSVDB ID: 13834

Title: AWStats awstats.pl debug mode Information Disclosure

Info

Disclosure

Feb 14, 2005

Discovery

Unknown

Dates

Exploit

Feb 14, 2005

Solution

Unknown

Description

Unknown or Incomplete

Classification

Attack Type: Information Disclosure
Impact: Loss of Confidentiality
Exploit: Exploit Public

Solution

Upgrade to version 6.4 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

Unknown or Incomplete

References

Related OSVDB ID: 13831 13832 13833
Secunia Advisory ID: 14299
CVE ID: 2005-0438 (see also: NVD)
Milw0rm: 853
Exploit Database: 853
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-02/0151.html
http://archives.neohapsis.com/archives/bugtraq/2005-02/0163.html
Vendor URL: http://awstats.sourceforge.net/
Vendor Specific Advisory URL: http://www.debian.org/security/2005/dsa-682

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/13834