CVE-2002-1986

Perception LiteServe <2.0.1 - Info Disclosure

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2002-1986. PoCs published by mattmurphy.

AI-analyzed exploit summary This Perl script exploits a CGI source code disclosure vulnerability in LiteServe 2.02 and prior by sending a crafted HTTP GET request with a trailing dot in the filename, causing the server to return the source code of the targeted CGI script.

Description

Perception LiteServe 2.0 through 2.0.1 allows remote attackers to obtain the source code of CGI scripts via an HTTP request with a trailing dot (".").

Exploits (1)

exploitdb WORKING POC VERIFIED

by mattmurphy · perlremotemultiple

https://www.exploit-db.com/exploits/22020

View Code ZIP pw:eip

This Perl script exploits a CGI source code disclosure vulnerability in LiteServe 2.02 and prior by sending a crafted HTTP GET request with a trailing dot in the filename, causing the server to return the source code of the targeted CGI script.

Classification

Working Poc 95%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: LiteServe 2.02 and prior

No auth needed

Prerequisites: Network access to the target LiteServe server · Knowledge of the CGI alias (default: cgi-isapi)

MITRE ATT&CK

T1119 - Automated Collection

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (3)

Core 3

Core References

Exploit mailing-list x_refsource_vulnwatch

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0074.html

Patch vdb-entry x_refsource_xf

http://www.iss.net/security_center/static/10635.php

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/6188

Scores

EPSS 0.0669

EPSS Percentile 93.0%

Details

Status published

Products (3)

perception/liteserve 2.0

perception/liteserve 2.0.1

perception/liteserve 2.0.2

Published Dec 31, 2002

Tracked Since Feb 18, 2026