Exploitation Summary
EIP tracks 1 public exploit for CVE-2000-0411. PoCs published by Black Watch Labs.
AI-analyzed exploit summary The exploit demonstrates an information leakage vulnerability in Matt Wright FormMail by crafting a URL that forces the script to email CGI environmental variables to an attacker-controlled address. This is achieved by manipulating the 'env_report' parameter to disclose sensitive server details.
Description
Matt Wright's FormMail CGI script allows remote attackers to obtain environmental variables via the env_report parameter.
Exploits (1)
The exploit demonstrates an information leakage vulnerability in Matt Wright FormMail by crafting a URL that forces the script to email CGI environmental variables to an attacker-controlled address. This is achieved by manipulating the 'env_report' parameter to disclose sensitive server details.