5 matches found
CVE-2001-0223
Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERYSTRING HTTP GET request...
CVE-2001-0223
Buffer overflow in wwwwais allows remote attackers to execute arbitrary commands via a long QUERYSTRING HTTP GET request...
CVE-2001-0223
The CVE-2001-0223 issue concerns the wwwwais CGI (wwwwais) on affected web servers. A buffer overflow in the CGI allows remote attackers to execute arbitrary commands by crafting a long QUERY_STRING in an HTTP GET request. The Nessus entry reiterates that the wwwwais CGI has a flaw enabling arbit...
numerous holes
+-----------------------------------------------------------+ | Independent Security Analysis | | "Security Vulnerabilities That Matter" | | | ++ / wwwwais.c is a CGI-based application that provides a frontend to several WAIS query tools. I was unable to locate the main distribution site for it,...
wwwwais QUERY_STRING Parameter Remote Overflow
The 'wwwwais' CGI is installed. This CGI has a well known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon usually root or nobody. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. include'deprecatednasllevel.inc'; include'compat.inc';...