Leif Wright ad.cgi file Parameter Arbitrary Command Execution

high Nessus Plugin ID 11464

Language:

Synopsis

Arbitrary commands can be run on the remote server.

Description

The CGI 'ad.cgi' is installed. This CGI has a well known security flaw that lets an attacker execute arbitrary commands with the privileges of the http daemon (usually root or nobody).

Solution

Remove it from /cgi-bin.

Plugin Details

Severity: High

ID: 11464

File Name: ad_cgi.nasl

Version: 1.20

Type: remote

Family: CGI abuses

Published: 3/25/2003

Updated: 1/19/2021

Configuration: Enable paranoid mode

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 6.7

CVSS v2

Risk Factor: High

Base Score: 9.3

Temporal Score: 6.9

Vector: CVSS2#AV:N/AC:M/Au:N/C:C/I:C/A:C

Vulnerability Information

Required KB Items: Settings/ParanoidReport

Excluded KB Items: Settings/disable_cgi_scanning

Vulnerability Publication Date: 12/11/2000

Reference Information

CVE: CVE-2001-0025

BID: 2103

Detections

Analytics