Learn about Linux
Download Linux
Get Linux helpSpecial Offers
Newsvac
simplestguest.cgi remote command execution vulnerability
December 14, 2000 (8:00:00 AM) - 7 years, 8 months ago
Share
Print
Comments
From SecurityFocus: "An insecurely call to the open() function leads to a failure to properly filter shell metacharacters from user supplied input. As a result, it is possible for an attacker to cause this script to execute arbitrary shell commands with the privilege of the webserver."
