3R Soft MailStudio 2000 2.0 - 'userreg.cgi' Arbitrary Command Execution

// source: https://www.securityfocus.com/bid/1335/info MailStudio 2000 is vulnerable to multiple attacks. It is possible for a remote user to gain read access to all files located on the server via the usage of the "/.." string passed to a CGI, thereby compromising the confidentiality of other...