CVE-2000-0056

IMail IMONITOR status.cgi CGI script allows remote attackers to cause a denial of service with many calls to status.cgi...

CVE-1999-0935

classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form...

CVE-1999-0947

AN-HTTPd server is affected by a remote command execution risk due to default CGI scripts test.bat, input.bat, input2.bat, and ssi/envout.bat that allow shell metacharacters. Exploitation would enable an attacker to run arbitrary commands on the remote host. The vulnerability details are drawn fr...

CVE-1999-0951

Vulnerability summary (CVE-1999-0951) : The OmniHTTPd CGI program imagemap.exe is affected by a remote buffer overflow in its /cgi-bin/imagemap.exe CGI. This can allow a remote attacker to execute arbitrary commands with the web server’s privileges (typically nobody or root). The issue is exploit...

CVE-1999-0947

AN-HTTPd provides example CGI scripts test.bat, input.bat, input2.bat, and envout.bat, which allow remote attackers to execute commands via shell metacharacters...

Mini SQL CGI content-length Field Remote Overflow

The mini-sql program comes with the w3-msql CGI which is vulnerable to a buffer overflow. An attacker may use it to gain a shell on this system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include 'compat.inc' ; ifdescription scriptid10296; scriptversion"1.40"; scriptcveid"CVE-2000-0012"...

CVE-1999-1462

Vulnerability in bb-hist.sh CGI History module in Big Brother 1.09b and 1.09c allows remote attackers to read portions of arbitrary files...

CVE-2000-0012

Buffer overflow in w3-msql CGI program in miniSQL package allows remote attackers to execute commands...

PT-1999-1819 · Webwho+ · Webwho+

Name of the Vulnerable Software and Affected Versions: WebWho+ versions affected versions not specified Description: The issue allows remote attackers to execute commands via shell metacharacters in the TLD parameter of the whois.cgi program. Recommendations: At the moment, there is no informatio...

Tony Greenwood WebWho+ 1.1 - Remote Command Execution

source: https://www.securityfocus.com/bid/892/info WebWho+ is a free cgi script written by Tony Greenwood for executing whois queries via the www. Though it does perform checks for shell escape characters on some parameters, it misses the 'type' variable and allows for malicious input to be sent ...

CVE-2000-0022

Lotus Domino HTTP server does not properly disable anonymous access for the cgi-bin directory...

IBM Lotus Domino HTTP Server Filesystem Setup Disclosure

It is possible to get the absolute path leading to the remote /cgi-bin directory by requesting a bogus cgi. This issue can be used to obtain OS and installation details. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc'; if description...

CVE-1999-0935

classifieds.cgi allows remote attackers to execute arbitrary commands by specifying them in a hidden variable in a CGI form...

Lincoln D. Stein nph-publish.cgi pathname Parameter Traversal Arbitrary File Write

The 'nph-publish.cgi' is installed. This CGI has a well known security flaw that lets an attacker to execute arbitrary commands with the privileges of the HTTP daemon usually root or nobody. %NASLMINLEVEL 70300 This script was written by Mathieu Perrin See the Nessus Scripts License for details...

hhp-whois_adv0013.txt

hhp Whois.CGI - ADVISORY. hhp hhp-ADV12 11/9/99 8:42:57pm CST By: loophole [email protected] - http://hhp.perlx.com What?: Hole in several known/unknown Whois CGI packages. Versions?: 1. Whois Internic Lookup - version: 1.0 2. CC Whois - Version: 1.0 3. Matt's Whois - Version: 1 Exploit!: These...

iis4.path.txt

Hello, There is another one way to retrieve a full path to local files in IIS4: If there is external CGI application configured for some file type and this application doesn't produce correct HTTP headers IIS generates an error with output of application both stdout and stderror. The problem is,...

Matt Wright guestbook.pl Arbitrary Command Execution

The 'guestbook.pl' is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the HTTP daemon root or nobody. %NASLMINLEVEL 70300 This script was written by Mathieu Perrin See the Nessus Scripts License for details Changes by Tenable: ...

Matthew Wright FormMail CGI (formmail.cgi) Arbitrary Mail Relay

The 'formmail.pl' is installed. This CGI has a well known security flaw that lets anyone execute arbitrary commands with the privileges of the HTTP daemon root or nobody. %NASLMINLEVEL 70300 This script was written by Mathieu Perrin See the Nessus Scripts License for details Changes by Tenable: -...

WWWBoard passwd.txt Authentication Credential Disclosure

The remote host is running WWWBoard, a bulletin board system written by Matt Wright. This board system comes with a password file passwd.txt installed next to the file 'wwwboard.html'. An attacker may obtain the contents of this file and decode the password to modify the remote www board...

Antelope Software W4-Server 2.6 a/Win32 - 'Cgitest.exe' Remote Buffer Overflow

// source: https://www.securityfocus.com/bid/802/info Certain versions of the W4-Server 32-bits personal webserver by Antelope Software ship with a flawed script, Cgitest.exe. This compiled CGI script fails to perform bounds checking on user supplied data and is vulnerable to a buffer overflow...