icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

WebWho+ whois.cgi Remote Command Execution

High

Synopsis

The remote host is using a vulnerable version of WebWho+ (webwho.pl).

Description

The remote host is using WebWho+ (webwho.pl), a CGI that contains a flaw that allows an attacker to execute arbitrary commands on this host.

Solution

Upgrade to a newer version of this CGI.