漏洞类别:CGI
漏洞等级: 
漏洞信息
Abyss Web Server is a freely available personal Web server. It is maintained by Aprelium Technologies and runs on Microsoft Windows as well as Linux. Abyss Web Server installs 'AbyssWebServer' service with an unquoted service path running with SYSTEM privileges which allows an authenticated, local attacker to escalate privileges. Affected Versions:
Abyss Web Server version X1 2.11.1 and earlier
漏洞危害
Successful exploitation of this vulnerability allows a local attacker to execute arbitrary code with SYSTEM privileges.
解决方案
There are no solutions available at this time. Check for upgrades from Aprelium's download site.
0day
文章评论