CVE-1999-0066

AnyForm CGI remote execution...

John S.2 Roberts AnyForm 1.0/2.0 CGI Semicolon Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/719/info AnyForm is a popular form CGI designed to support simple forms that deliver responses via email. Certain versions of AnyForm did not perform user supplied data sanity checking and could be exploited by remote...

AnyForm脚本远程可执行任意命令漏洞

BugCVE: CVE-1999-0066 BUGTRAQ: 719 AnyForm是一个利用简单表单发送Email的CGI脚本，由John Roberts编写。 AnyForm版本2（AnyForm2）实现上存在输入验证漏洞，远程攻击者可以利用此漏洞在主机上以Web进程的权限执行任意命令。 AnyForm未经检查就把从表单得到的用户输入传递给SYSTEM系统调用，远程攻击者可能在输入中插入“;”等转义字符而执行任意命令 Unix版本 暂无 创建一个表单包含以下隐含字段： input type="hidden" name="AnyFormTo"...

AnyForm脚本远程可执行任意命令漏洞 Exploit

No description provided by source. 创建一个表单包含以下隐含字段： input type="hidden" name="AnyFormTo" value="[email protected];cmd-to execute with whatever arguments;/usr/lib/sendmail -t [email protected]"...

AnyForm CGI Arbitrary Command Execution

The CGI 'AnyForm2' is installed on the remote web server. Old versions of this CGI have a well known security flaw that lets anyone execute arbitrary commands with the privileges of the http daemon root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

CVE-1999-0066

AnyForm CGI remote execution...

CVE-1999-0066

AnyForm CGI remote execution...

CVE-1999-0066

CVE-1999-0066 corresponds to a remote command execution vulnerability in the AnyForm CGI family. The Seebug entry describes AnyForm2 as vulnerable due to input validation flaws that pass unchecked user input to the SYSTEM call, enabling a remote attacker to execute arbitrary commands with the web...

CVE-1999-0066

AnyForm CGI remote execution...

PT-1995-1000 · Unknown · Anyform Cgi

Name of the Vulnerable Software and Affected Versions: AnyForm CGI affected versions not specified Description: The issue concerns remote execution in AnyForm CGI. No information is provided about the estimated number of potentially affected devices or real-world incidents where this issue was...

John S.2 Roberts AnyForm 1.02.0 - CGI Semicolon

John S.2 Roberts AnyForm 1.02.0 - CGI Semicolon source: https://www.securityfocus.com/bid/719/info AnyForm is a popular form CGI designed to support simple forms that deliver responses via email. Certain versions of AnyForm did not perform user supplied data sanity checking and could be exploited...

John S.2 Roberts AnyForm 1.0/2.0 - CGI Semicolon

source: https://www.securityfocus.com/bid/719/info AnyForm is a popular form CGI designed to support simple forms that deliver responses via email. Certain versions of AnyForm did not perform user supplied data sanity checking and could be exploited by remote intruders to execute arbitrary...