Summary
The CGI 'viralator.cgi' is installed.
Some versions of this CGI are don't check properly the user input and allow anyone to execute arbitrary commands with the privileges of the web server
** No flaw was tested. Your script might be a safe version.
Solutions : Upgrade this script to version 0.9pre2 or newer
Severity
Classification
-
CVE CVE-2001-0849 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Adiscon LogAnalyzer Multiple SQL Injection and XSS Vulnerabilities
- ActualAnalyzer Lite 'ant' Cookie Parameter Remote Command Execution Vulnerability
- ArticleFR CMS 'id' Parameter SQL Injection Vulnerability
- Atlassian JIRA Privilege Escalation and Multiple Cross Site Scripting Vulnerabilities
- Apache Struts2 'URL' & 'Anchor' tags Arbitrary Java Method Execution Vulnerabilities