Sambar Server Admin Access Vulnerability

Sambar Server Admin Access Vulnerability

The following examples are provided by Michiel de Weerd <webmaster@focus.demon.nl>:

The following will display environment information:

http://target/cgi-bin/dumpenv.pl

The following is an example of the path to login as admin:

http://target/session/adminlogin?RCpage=/sysadmin/index.stm