Description

FastCGI is a binary protocol for interfacing interactive programs with a web server. FastCGI is a variation on the earlier Common Gateway Interface (CGI).

If the FastCGI port is exposed, attackers can construct and send binary FastCGI packets to execute arbitrary commands.

It was confirmed that the FastCGI port 9000 is publicly accessible.

Remediation

The FastCGI port should not be publicly accessible. FastCGI should be configured to listen only on the local interface (127.0.0.1) or to use a unix socket.

References

FastCGI Specification

Related Vulnerabilities

Apache Struts 2 ClassLoader manipulation and denial of service

Liferay version older than 7.0

Symfony weak application secret

WordPress Plugin WP Super Cache Remote Code Execution (1.7.1)

PrimeFaces 5.x Expression Language injection

Severity

High

Classification

CWE-78 CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N

Tags

Code Execution