Summary
The 'listrec.pl' cgi is installed. This CGI has
a security flaw that lets an attacker execute arbitrary commands on the remote server, usually with the privileges of the web server.
Solution
Remove it from /cgi-bin/common/.
Severity
Classification
-
CVE CVE-2001-0997 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities