Apache Remote Command Execution Via .bat Files Network Vulnerability

Summary

The Apache 2.0.x Win32 installation is shipped with a default script, /cgi-bin/test-cgi.bat, that allows an attacker to execute commands on the Apache server (although it is reported that any .bat file could open this vulnerability.) An attacker can send a pipe character with commands appended as parameters, which are then executed by Apache.

Solution

This bug is fixed in 1.3.24 and 2.0.34-beta, or remove /cgi-bin/test-cgi.bat

Severity

Classification

CVE CVE-2002-0061
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

Related Vulnerabilities

Kolibri Remote Buffer Overflow Vulnerability
Lighttpd 'mod_userdir' Case Sensitive Comparison Security Bypass Vulnerability
Zeus Web Server 'SSL2_CLIENT_HELLO' Remote Buffer Overflow Vulnerability
CERN httpd CGI name heap overflow
IIS Remote Command Execution

Apache Remote Command Execution via .bat files

Take action and discover your vulnerabilities