AbeTimmerman.zml.Directory.Traversal

description-logoDescription

It indicates a file disclosure vulnerability in Abe Timmerman zml.cgi program.


zml.cgi is a perl script which can be used to support server side include directives under Apache Web Server. There exists a vulnerability that allows remote attackers to read arbitrary files by sending a specially-crafted message to a target system.

affected-products-logoAffected Products


Any unprotected Abe Timmerman zml.cgi is vulnerable to the attack.

Impact logoImpact

Attackers can read arbitrary files on the victim system.

recomended-action-logoRecommended Actions

Apply appropriate patches or upgrade the system to the latest non-vulnerable version.


Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)