CVE-1999-0467

Webcom CGI Guestbook - Info Disclosure

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 2 public exploits for CVE-1999-0467. PoCs published by Mnemonix.

AI-analyzed exploit summary The writeup describes a directory traversal vulnerability in the freeware guestbook package, allowing arbitrary file read via the 'template' parameter in rguest.exe or wguest.exe. The example demonstrates retrieving boot.ini by manipulating the path.

Description

The Webcom CGI Guestbook programs wguest.exe and rguest.exe allow a remote attacker to read arbitrary files using the "template" parameter.

Exploits (2)

exploitdb WRITEUP VERIFIED
by Mnemonix · textremotecgi
https://www.exploit-db.com/exploits/20446

The writeup describes a directory traversal vulnerability in the freeware guestbook package, allowing arbitrary file read via the 'template' parameter in rguest.exe or wguest.exe. The example demonstrates retrieving boot.ini by manipulating the path.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: freeware guestbook package (versions undetermined)
No auth needed
Prerequisites: Access to the CGI scripts (rguest.exe or wguest.exe)
devstral-2 · analyzed Feb 18, 2026 Full analysis →
exploitdb WRITEUP VERIFIED
by Mnemonix · textremotecgi
https://www.exploit-db.com/exploits/20447

This is a writeup describing a directory traversal vulnerability in the freeware guestbook package. The vulnerability allows an attacker to read arbitrary files by manipulating the 'template' parameter in rguest.exe or wguest.exe.

Classification
Writeup 90%
Attack Type
Info Leak
Complexity
Trivial
Reliability
Reliable
Target: freeware guestbook package (version undetermined)
No auth needed
Prerequisites: Access to the target web server · Presence of vulnerable rguest.exe or wguest.exe in /cgi-bin
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1
Core References
Third Party Advisory, VDB Entry x_refsource_misc
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0467

Scores

EPSS 0.0774
EPSS Percentile 93.9%

Details

Status published
Products (1)
webcom/cgi_guestbook
Published Apr 01, 1999
Tracked Since Feb 18, 2026