talentsoft
----------

CVE Number: 
CAN-2000-0282

Details:
The webplus cgi script was found on the system. It comes with the TalentSoft 
package. The webpsvr daemon in the Web+ shopping cart application allows remote
viewing of files. The webscript.cgi file allows for remote execution of files.

Fix:
It is recommended that you upgrade with the latest patches.

Related URLs:
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q3/0139.html
http://www.securityfocus.com/bid/1102

$Id: talentsoft,v 1.2 2001/01/03 23:12:25 loveless Exp $
