###################### NaviCopa webserver 3.0.1 Multiple Vulnerabilities #################
In the wild…
################################################
#####Info: Award Winning NaviCOPA is ideal for business users who require a powerful and flexible Web Server,
but don't want to have to spend months learning how to configure it.
######[Script Source Disclousure]###############
If we add dot at end of URI,server won't execute script,so we can see source code:
PoC:
###########[Buffer Overflow]#####################
Buffer Overflow exist if we supply more than 5400~ characters to root directory.Similar thing reported
at version 2.01 of this software http://www.securityfocus.com/bid/20250 (/cgi-bin/AAAA…)
PoC:
GET /AAAAAAAAAAAAAAAAAA… HTTP/1.0
In memory of shinnai.